Logfile of random's system information tool 1.09 (written by random/random)
Run by lada at 2011-10-24 19:14:21
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 44 GB (27%) free of 165 GB
Total RAM: 4095 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:14:34, on 24.10.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe
C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
C:\Program Files (x86)\ICQ7.6\ICQ.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Java\jre6\launch4j-tmp\frd.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files\trend micro\lada.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {66bd2442-241b-44cd-8c7a-b51037053cdb} - (no file)
R3 - URLSearchHook: (no name) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file)
R3 - URLSearchHook: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [RemoteControl11] C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-64356702-1420314229-3237286800-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-64356702-1420314229-3237286800-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Playlist - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: TwonkyBeam to - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://software.kuaiche.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Ashampoo CoreTuner Helper Service (acthelper) - Ashampoo Development GmbH & Co. KG - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Ashampoo HDD Control 2 Service (AHDDC2) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: O&O CleverCache (OOCleverCache) - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PS3 Media Server - Tanuki Software, Ltd. - C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SetupARService - Realtek Semiconductor. - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: TVersityMediaServer - Unknown owner - C:\ProgramData\TVersity\Media Server\MediaServer.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
--
End of file - 14672 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe"
"C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
crypserv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe" -s "C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.conf"
\??\C:\Windows\system32\conhost.exe "-6636905012125318281-1928123343-9158105421263129860-19322566051542774049-775146015
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe"
"C:\Windows\system32\java.exe" -Djava.encoding=UTF-8 -Djava.net.preferIPv4Stack=true -Dstart.service=true -Xmx768m -Djava.library.path="win32/service/" -classpath "win32/service/wrapper.jar;pms.jar" -Dwrapper.key="ldANobjy9KoIXe6s" -Dwrapper.port=32000 -Dwrapper.jvm.port.min=31000 -Dwrapper.jvm.port.max=31999 -Dwrapper.pid=2920 -Dwrapper.version="3.5.9" -Dwrapper.native_library="wrapper" -Dwrapper.service="TRUE" -Dwrapper.cpu.timeout="10" -Dwrapper.jvmid=1 org.tanukisoftware.wrapper.WrapperSimpleApp net.pms.PMS
"C:\ProgramData\TVersity\Media Server\MediaServer.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe"
"C:\Program Files\OO Software\CleverCache\ooccag.exe"
WLIDSvcM.exe 3208
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:1316
"C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /c /a /s UserSession
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\UI0Detect.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ICQ7.6\ICQ.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:4852 CREDAT:203009
C:\Windows\system32\Macromed\Flash\FlashUtil64_11_0_1_ActiveX.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3256.8e206a0.603851253 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" Mozilla.Firefox.7.0.1 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.jar" 3256 "\\.\pipe\gecko-crash-server-pipe.3256" plugin
"C:\Program Files (x86)\Java\jre6\launch4j-tmp\frd.exe" -Xms32m -Xmx128m -jar "D:\stahování firefox W7\FRD_0.85u1-final\FRD_0.85u1-final\frd.jar"
"C:\Program Files (x86)\Winamp\winamp.exe"
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"D:\stahování firefox W7\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\AutoKMSDaily.job
C:\Windows\tasks\DriverEasy Scheduled Scan.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647]
"Description"=12.0.1.647
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
npwachk.xpt
nsjsrealplayerplugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
nppdf32.dll
nppl3260.dll
nprjplug.dll
nprpjplug.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
acpro.xml
fcmdSrchddr.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
yahoo.xml
C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\
battlefieldheroespatcher@ea.com
DTToolbar@toolbarnet.com
support@predictad.com
toolbar@ask.com
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
{66bd2442-241b-44cd-8c7a-b51037053cdb}
{800b5000-a755-47e1-992b-48a1c1357f07}
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\
conduit.xml
daemon-search.xml
google-images.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-07-03 386264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll [2011-04-29 436152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll [2010-10-26 262144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL [2011-03-31 210872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll [2011-01-17 175912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-08-03 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files (x86)\Seznam.cz\listicka.dll [2011-09-27 2080800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll [2011-01-17 175912]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll [2010-10-26 217088]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll [2011-04-29 436152]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2011-08-17 1055808]
{1EA00BE1-6E54-4E2A-8099-680300BF23E1} - Nástroje Lištičky - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll [2011-09-27 188960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
C:\Windows\SysWOW64\xRaidSetup.exe [2010-09-07 1976920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4]
C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe [2011-08-09 417112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-10-08 47904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\autostarter.exe [2009-09-25 428376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AshSnap]
C:\Program Files (x86)\Ashampoo\Ashampoo Snap 3\ashsnap.exe [2010-03-18 1243472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR11]
C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2011-08-30 925960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-07-26 2782096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivX Download Manager]
C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashGet 3]
C:\Program Files (x86)\FlashGet Network\FlashGet 3\Flashget3.exe [2009-12-22 2127408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ioCentre]
C:\Genius\ioCentre\gTaskBar.exe [2009-09-03 60928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe [2011-01-25 421160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2007-12-10 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-28 1406248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ooccctrl.exe]
C:\Program Files\OO Software\CleverCache\ooccctrl.exe [2010-12-08 4346696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC207_Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2007-12-10 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2010-12-03 141368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SAOB Monitor]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2010-12-17 391144]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSDMonitor]
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2010-08-05 104408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\Steam.exe [2011-03-27 1242448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-09-28 2988784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files (x86)\real\realplayer\Update\realsched.exe [2011-07-03 273544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2010-12-17 5566176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UIWatcher]
C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 3\UIWatcher.exe [2010-02-09 3509080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB Safely Remove]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-01-15 255536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TwonkyMedia Tray Control.lnk]
C:\PROGRA~2\TWONKY~1\TWONKY~2.EXE [2010-11-04 595544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lada^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ImpulseNow.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lada^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Linksys Cordless Internet Telephony Kit.lnk]
C:\PROGRA~2\Linksys\Cordless Internet Telephony Kit\cit200.exe [2005-12-19 759296]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"Malwarebytes' Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]
"RemoteControl11"=C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe [2011-08-24 230696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoSecCpl"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
"NoDispCpl"=0
"NoDispScrSavPage"=0
"NoDispAppearancePage"=0
"NoDispSettingsPage"=0
"NoVisualStyleChoice"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0
"ConsentPromptBehaviorAdmin"=5
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149
"NoDriveAutoRun"=1
"NoActiveDesktopChanges"=0
"NoSetActiveDesktop"=0
"NoInstrumentation"=0
"NoDesktop"=0
"NoActiveDesktop"=0
"HideClock"=0
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"StartmenuLogoff"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoRun"=0
"NoFind"=0
"NoClose"=0
"NoSetFolders"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoToolbarCustomize"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0
"NoThemesTab"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
"NoResolveTrack"=0
"NoViewContextMenu"=0
"NoFileAssociate"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0
"NoSetActiveDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivereasy.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filler602.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\itunes.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regmech.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\twonkymediaserverconfig.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\usbsafelyremove.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-10-24 17:33:43 ----A---- C:\Windows\3D World Map.scr
2011-10-24 17:33:42 ----D---- C:\Program Files\Longgame
2011-10-23 19:28:18 ----A---- C:\Windows\SYSWOW64\drivers\mbamswissarmy.sys
2011-10-22 10:41:57 ----D---- C:\ProgramData\PDVD
2011-10-22 10:40:10 ----D---- C:\ProgramData\install_clap
2011-10-21 16:16:19 ----D---- C:\convert
2011-10-21 15:20:55 ----D---- C:\ProgramData\Readon
2011-10-19 15:30:56 ----D---- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
2011-10-19 15:15:54 ----D---- C:\Program Files (x86)\Ubisoft
2011-10-18 10:36:17 ----D---- C:\ProgramData\Airline Tycoon 2
2011-10-18 01:24:17 ----D---- C:\Program Files (x86)\Kalypso Media
2011-10-16 20:48:02 ----D---- C:\ProgramData\PMS
2011-10-16 19:04:50 ----A---- C:\Windows\system32\TURegOpt.exe
2011-10-16 19:04:50 ----A---- C:\Windows\system32\authuitu.dll
2011-10-16 19:04:49 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2011-10-16 19:04:12 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012
2011-10-16 19:03:11 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2011-10-15 08:24:45 ----D---- C:\Windows\system32\Macromed
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-10-13 08:35:06 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\OpenCL.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvoglv64.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvgenco64.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvdispco64.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvcuvid.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvcuda.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\nvcompiler.dll
2011-10-13 08:35:06 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\url.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-10-12 08:30:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\wininet.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\urlmon.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\url.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\mshtmled.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\mshtml.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\jsproxy.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\jscript9.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\jscript.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\ieui.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\iertutil.dll
2011-10-12 08:30:41 ----A---- C:\Windows\system32\ieframe.dll
2011-10-12 08:23:30 ----A---- C:\Windows\system32\win32k.sys
2011-10-12 08:23:21 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-10-12 08:23:21 ----A---- C:\Windows\system32\psisdecd.dll
2011-10-12 08:22:59 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-10-12 08:22:59 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-10-12 08:22:59 ----A---- C:\Windows\system32\oleaut32.dll
2011-10-12 08:22:59 ----A---- C:\Windows\system32\oleacc.dll
2011-10-09 10:40:18 ----D---- C:\Program Files (x86)\TT
2011-10-09 09:22:12 ----D---- C:\ProgramData\DVD X Studios
2011-10-09 09:22:12 ----D---- C:\Program Files (x86)\Aviosoft
2011-10-08 15:28:50 ----N---- C:\bootsqm.dat
2011-10-04 15:30:00 ----D---- C:\Program Files (x86)\Seznam.cz
2011-10-04 15:20:09 ----D---- C:\Program Files (x86)\ICQ7.6
2011-10-01 19:44:55 ----D---- C:\ProgramData\MediaMonkey
2011-10-01 19:44:53 ----D---- C:\Users\lada\AppData\Roaming\MediaMonkey
2011-10-01 19:44:52 ----D---- C:\Program Files (x86)\MediaMonkey
======List of files/folders modified in the last 1 month======
2011-10-24 19:14:34 ----D---- C:\Program Files\trend micro
2011-10-24 19:14:06 ----D---- C:\Windows\TEMP
2011-10-24 18:48:17 ----SHD---- C:\System Volume Information
2011-10-24 18:11:06 ----D---- C:\Windows\system32\config
2011-10-24 17:55:50 ----D---- C:\Users\lada\AppData\Roaming\ICQ
2011-10-24 17:55:18 ----D---- C:\Windows
2011-10-24 17:55:00 ----D---- C:\Program Files (x86)\PS3 Media Server
2011-10-24 17:54:32 ----D---- C:\ProgramData\NVIDIA
2011-10-24 17:33:42 ----RD---- C:\Program Files
2011-10-24 16:43:26 ----D---- C:\ProgramData\PMB Files
2011-10-23 22:38:09 ----D---- C:\Users\lada\AppData\Roaming\BitTorrent
2011-10-23 19:28:18 ----D---- C:\Windows\SYSWOW64\drivers
2011-10-22 11:21:20 ----D---- C:\Windows\system32\catroot
2011-10-22 11:21:17 ----SHD---- C:\Windows\Installer
2011-10-22 11:21:17 ----SHD---- C:\Config.Msi
2011-10-22 11:14:37 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-10-22 11:14:35 ----AD---- C:\ProgramData\Temp
2011-10-22 11:00:49 ----D---- C:\Windows\Tasks
2011-10-22 10:51:04 ----D---- C:\Windows\winsxs
2011-10-22 10:49:23 ----D---- C:\Windows\system32\Tasks
2011-10-22 10:48:30 ----D---- C:\Program Files (x86)\Cyberlink
2011-10-22 10:46:01 ----D---- C:\Users\lada\AppData\Roaming\CyberLink
2011-10-22 10:46:01 ----D---- C:\ProgramData\CyberLink
2011-10-22 10:41:57 ----HD---- C:\ProgramData
2011-10-21 15:38:06 ----D---- C:\Users\lada\AppData\Roaming\vlc
2011-10-21 15:16:25 ----D---- C:\Program Files (x86)\Readon Technology
2011-10-19 15:16:54 ----RSD---- C:\Windows\assembly
2011-10-19 15:15:54 ----RD---- C:\Program Files (x86)
2011-10-19 14:49:03 ----D---- C:\Windows\Logs
2011-10-18 10:37:34 ----D---- C:\Windows\system32\NDF
2011-10-17 19:48:02 ----D---- C:\Windows\System32
2011-10-17 19:48:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-10-17 19:37:30 ----D---- C:\Windows\SysWOW64
2011-10-16 21:10:52 ----D---- C:\Program Files (x86)\JDownloader
2011-10-16 19:04:57 ----D---- C:\Program Files\Windows Sidebar
2011-10-16 19:04:16 ----D---- C:\Users\lada\AppData\Roaming\TuneUp Software
2011-10-16 19:04:16 ----D---- C:\ProgramData\TuneUp Software
2011-10-16 11:56:51 ----D---- C:\Users\lada\AppData\Roaming\Winamp
2011-10-16 00:20:10 ----D---- C:\Windows\system32\catroot2
2011-10-15 08:24:56 ----D---- C:\Windows\Downloaded Program Files
2011-10-13 22:05:22 ----D---- C:\Windows\Microsoft.NET
2011-10-13 19:33:14 ----HD---- C:\Program Files (x86)\Temp
2011-10-13 19:27:13 ----D---- C:\Windows\inf
2011-10-13 11:05:03 ----D---- C:\ProgramData\twonkymedia
2011-10-13 09:03:07 ----D---- C:\Program Files (x86)\TwonkyMedia
2011-10-13 08:37:19 ----D---- C:\Program Files\NVIDIA Corporation
2011-10-13 08:37:15 ----D---- C:\Windows\system32\DriverStore
2011-10-13 08:35:41 ----D---- C:\Windows\system32\drivers
2011-10-12 22:23:31 ----D---- C:\Users\lada\AppData\Roaming\Skype
2011-10-12 22:06:43 ----D---- C:\Windows\debug
2011-10-12 19:37:03 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-10-12 09:14:07 ----D---- C:\Windows\SYSWOW64\migration
2011-10-12 09:14:07 ----D---- C:\Program Files\Internet Explorer
2011-10-12 09:14:07 ----D---- C:\Program Files (x86)\Internet Explorer
2011-10-12 09:14:05 ----D---- C:\Windows\system32\migration
2011-10-12 09:14:01 ----D---- C:\Windows\ehome
2011-10-12 09:08:52 ----A---- C:\Windows\system32\MRT.exe
2011-10-12 09:07:57 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-10-12 09:07:56 ----D---- C:\Program Files (x86)\Registry Mechanic
2011-10-12 09:07:56 ----D---- C:\Program Files (x86)\RapidShareManager
2011-10-07 20:29:51 ----D---- C:\Program Files (x86)\CCleaner
2011-10-07 16:52:22 ----D---- C:\ProgramData\NokiaInstallerCache
2011-10-04 15:20:35 ----D---- C:\Program Files (x86)\ICQ6Toolbar
2011-10-04 15:20:25 ----D---- C:\ProgramData\ICQ
2011-10-04 15:20:06 ----D---- C:\Program Files (x86)\ICQ7.5
2011-10-01 20:07:31 ----D---- C:\Program Files (x86)\AC3Filter
2011-09-27 20:22:54 ----D---- C:\Windows\Prefetch
2011-09-27 19:27:40 ----D---- C:\Windows\Panther
2011-09-27 19:24:29 ----D---- C:\Users\lada\AppData\Roaming\Media Player Classic
2011-09-26 05:28:05 ----D---- C:\ProgramData\McAfee
2011-09-26 05:28:05 ----D---- C:\Program Files (x86)\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2011-05-19 120920]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2011-02-23 18232]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-01-06 277088]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2007-02-07 14104]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-17 828912]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [2011-03-15 912504]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2011-01-06 1263200]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-01-06 970336]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111014.001\BHDrvx64.sys [2011-10-15 1155704]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-29 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20111021.030\IDSvia64.sys [2011-08-23 488568]
R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\0501000.01D\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS [2011-07-08 386168]
R1 truecrypt;truecrypt; C:\Windows\SysWOW64\drivers\truecrypt.sys [2010-05-12 222160]
R2 acedrv11;acedrv11; \??\C:\Windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-09-19 314016]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2011-01-25 142936]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-09-19 43680]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2011-01-06 285280]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\l160x64.sys [2009-10-13 61440]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-29 136824]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2011-07-06 34288]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2009-11-02 25088]
R3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 14336]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 25416]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111023.005\ENG64.SYS [2011-09-29 117880]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111023.005\EX64.SYS [2011-09-29 2048632]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-06-03 82816]
R3 Safetica;Safetica Encryption Driver; C:\Windows\system32\DRIVERS\safetica.sys [2010-04-18 252728]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\N360x64\0501000.01D\SRTSP64.SYS [2011-03-31 744568]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-08 174200]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-09-22 11856]
S3 appliandMP;appliandMP; C:\Windows\system32\DRIVERS\appliand.sys []
S3 dump_wmimmc;dump_wmimmc; \??\F:\HRY\lineage2\system\GameGuard\dump_wmimmc.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-04-27 20336]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPPTNT2;NPPTNT2; \??\C:\Windows\syswow64\npptNT2.sys [2009-04-06 4682]
S3 PAC207;e-Messenger 112; C:\Windows\system32\DRIVERS\PFC027.SYS [2009-06-25 686592]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-03-23 33184]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\WNt500x64\Sandra.sys [2009-08-08 23112]
S3 smbusp;Intel(R) SMBus 2.0 Driver; C:\Windows\system32\DRIVERS\intelsmb.sys [2010-06-10 36224]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-03-23 21328]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2010-12-17 1112664]
R2 acthelper;Ashampoo CoreTuner Helper Service; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe [2009-09-25 902488]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AdvancedSystemCareService;Advanced SystemCare Service; C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-08-09 328536]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-01-06 3246040]
R2 AHDDC2;Ashampoo HDD Control 2 Service; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [2011-02-18 1515864]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-01-05 37664]
R2 Crypkey License;Crypkey License; C:\Windows\system32\crypserv.exe [2008-05-08 122880]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2011-08-17 247872]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-06-01 821080]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 980072]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 OOCleverCache;O&O CleverCache; C:\Program Files\OO Software\CleverCache\ooccag.exe [2010-12-08 850760]
R2 PS3 Media Server;PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2011-10-12 2072896]
R2 TVersityMediaServer;TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [2010-11-24 921600]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SetupARService;SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [2011-10-13 24576]
S3 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2011-06-24 393112]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe [2009-08-18 93848]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-27 403240]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736]
S4 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
S4 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-10-07 345376]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-22 135664]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-22 135664]
S4 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 101528]
S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-01-25 933664]
S4 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-08-05 583640]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2009-10-20 117264]
S4 TwonkyMedia;TwonkyMedia; C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe [2010-11-04 497240]
S4 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [2008-12-06 458928]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu.Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu.Děkuji
Dobrý večer 
Odinstalujte všechno, co má v názvu toolbar, především pak Ask.com a ICQ toolbar + Conduit Engine a facemoods
Odinstalovat vše od IOBit
Co ten nelegálni TuneUp? 
Odistalovat
Spustíme si HijackThis
(Pokud nenajdeme nebo nemáme,tak stáhneme ZDE )
Vidím Malwarebytes, poprosím o Úplný sken
TFC
Údržba PC:
1)Čištění dočasných složek + neplatné registry
Ccleaner
Defraggler
FileHippo.com Update Checker
Jak se chová PC 
+ nový RSIT
Odinstalujte všechno, co má v názvu toolbar, především pak Ask.com a ICQ toolbar + Conduit Engine a facemoods Odinstalovat vše od IOBit Co ten nelegálni TuneUp? Odistalovat Spustíme si HijackThis
Kód: Vybrat vše
C:\Program Files\trend micro\Mirek.exe
- Dále klikneme na tlačítko Do a system scan only
- Najdeme a označíme následující položky:
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll R3 - URLSearchHook: (no name) - - (no file) R3 - URLSearchHook: (no name) - {66bd2442-241b-44cd-8c7a-b51037053cdb} - (no file) R3 - URLSearchHook: (no name) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - (no file) R3 - URLSearchHook: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file) - klikneme na položku Fix checked a potvrdíme tlačítkem Ano
Vidím Malwarebytes, poprosím o Úplný sken TFC
- Stáhneme a spustíme program
- Klikneme na Start a potvrdíme OK
- Program začne uklízet,poté restartuje pc
- po použití program smažte
Údržba PC:
1)Čištění dočasných složek + neplatné registry
- Stáhneme a nainstalujeme program
- Spustíme program
- ČISTIČ
Windows zde necháme vše jak je (pokud používáme IE,tak odškrkneme jeho položky) a zaškrkneme položky Start Menu zástupci a Zástupci na ploše a odškrkneme volbu Zbytky souborů v paměti
Aplikace - necháme jak je,ale pokud používáme nějaký prohlížeč (Google chrome,Firefox,Opera..) tak odškrkneme jeho položky
>Stiskeneme tlačítko Analyzovat a poté Spustit Cleaner - Registry
>Stiskneme tlačítko Hledej problémy,program začne hledat neplatné registry..podé zvolíme Opravit vybrané problémy..
>Program se zeptá,zda chceme vytvořit zálohu registrů,zvolíme ano a uložíme si někde zálohu(kdyby byli po opravení registru s něčím problémy,tak zálohu obnovíme tak,že spustíme uloženou zálohu a potvrdíme ano),dále zvolíme Opravit všechny problémy a Zavřít
>opakujte dokud nebude registr bez problémů - Program používáme 1x 14dní (záleží na používání pc,můžeme i jednou týdně)
Defraggler
- Stáhneme a nainstalujeme program
- Spustíme program
- Vybereme disk ( C:,D:..prostě který používáme)
- Pokud je ve sloupci Fragmentace více než 5% dejte Defragmentovat
- Proveďte se všemi používanými disky
- Provádíme 1x za měsíc
FileHippo.com Update Checker
- Stáhneme a nainstalujeme program(Při instalaci odškrkneme volbu Run at Startup )
- Spustíme program
- Program vyhledá nainstalované programy v PC a zjistí dostupné aktualizace
- Poté se vám otevře internetová stránka,kde budou nabídnuté aplikace k aktualizování
>X Updates Detected..to jsou dostupné aktualizace..
> klikneme na zelenou šipečku a stáhneme program,poté nainstalujeme jeho aktuální verzi
> X Beta Updates Detected..tyto aktualizace nestahujte,jedná se o betaverze,které jsou ve vývoji a jsou nestabilní 
- Provádíme 1x za 14 dní nebo jednou za měsíc
Jak se chová PC + nový RSITNapiš mi: chodnik74@gmail.com nebo 
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| 
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. 
Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivní kontrolu.Děkuji
tak se mi některé položky podařilo fiksnout ale některé i přes opětovné nejdou odmazat.posílám i vypis z malwarebytes
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:46:25, on 25.10.2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\stahování firefox W7\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [RemoteControl11] C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Playlist - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: TwonkyBeam to - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O15 - Trusted Zone: http://software.kuaiche.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Ashampoo CoreTuner Helper Service (acthelper) - Ashampoo Development GmbH & Co. KG - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Ashampoo HDD Control 2 Service (AHDDC2) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: O&O CleverCache (OOCleverCache) - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - PC Tools - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PS3 Media Server - Tanuki Software, Ltd. - C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SetupARService - Realtek Semiconductor. - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TVersityMediaServer - Unknown owner - C:\ProgramData\TVersity\Media Server\MediaServer.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Unknown owner - C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
--
End of file - 14136 bytes
Malwarebytes' Anti-Malware 1.51.2.1300
http://www.malwarebytes.org
Verze databáze: 8015
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
25.10.2011 8:40:05
mbam-log-2011-10-25 (08-40-05).txt
Typ: Úplná kontrola (C:\|D:\|E:\|F:\|G:\|H:\|)
Kontrolované objekty: 474830
Uplynulý čas: 1 hodin, 11 minut, 17 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 1
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\lada\Desktop\power\cyberlink powerdvd ultra 11.0.2024.53 +keygen\Keygen.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:46:25, on 25.10.2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\stahování firefox W7\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\bh\facemoods.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyAs.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodsTlbr.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [RemoteControl11] C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Playlist - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: TwonkyBeam to - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O15 - Trusted Zone: http://software.kuaiche.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Ashampoo CoreTuner Helper Service (acthelper) - Ashampoo Development GmbH & Co. KG - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Ashampoo HDD Control 2 Service (AHDDC2) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: O&O CleverCache (OOCleverCache) - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - PC Tools - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PS3 Media Server - Tanuki Software, Ltd. - C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SetupARService - Realtek Semiconductor. - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TVersityMediaServer - Unknown owner - C:\ProgramData\TVersity\Media Server\MediaServer.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Unknown owner - C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
--
End of file - 14136 bytes
Malwarebytes' Anti-Malware 1.51.2.1300
http://www.malwarebytes.org
Verze databáze: 8015
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
25.10.2011 8:40:05
mbam-log-2011-10-25 (08-40-05).txt
Typ: Úplná kontrola (C:\|D:\|E:\|F:\|G:\|H:\|)
Kontrolované objekty: 474830
Uplynulý čas: 1 hodin, 11 minut, 17 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 1
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\lada\Desktop\power\cyberlink powerdvd ultra 11.0.2024.53 +keygen\Keygen.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu.Děkuji
Odinstaloval jste vše, co jsem psal zde? http://www.viry.cz/forum/viewtopic.php? ... 9#p1045729
Pokud ne, tak tak učiňte nebo to budu muset odpálit ručně Nalezenou položku MBAM smazat
Až budete mít vše hotové,tak pokračujte dále...
Stáhneme si na Plochu program OTL
Pokud ne, tak tak učiňte nebo to budu muset odpálit ručně
Nalezenou položku MBAM smazat Až budete mít vše hotové,tak pokračujte dále...
Stáhneme si na Plochu program OTL
- Spustíme soubor OTL.exe (pokud máte Windows Vista nebo Windows 7,tak na soubor klikněte pravým tlačítkem myši a dejte ,,Spustit jako správce,,)
- Pokud používáte 64 bitový systém,zaškrkněte volbu Pro 64 bitové OS,pokud ne,tak by měla být nezaškrknutá
- Zaškrkněte okýnko Pro všechny uživatele,Kontrola havět "LOP",Kontrola havět "Purity"
- Staří souborů změňte z 30 dnů na 7 dnů
- Do spodního okýnka Vlastní skenování/opravy vložte následující script:
Kód: Vybrat vše
netsvcs safebootminimal safebootnetwork drivers32 savembr:0 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s /md5start scecli.dll autochk.exe csrss.exe explorer.exe lsass.exe services.exe smss.exe spoolsv.exe svchost.exe userinit.exe winlogon.exe atapi.sys cdrom.sys ndis.sys ntfs.sys tcpip.sys %SystemDrive%\PhysicalMBR.bin /md5stop C:\windows\system32\spool\prtprocs|dll;true;true;true /FP %systemroot%\system32\drivers\*.sys /5 %systemroot%\system32\drivers\*.sys /X %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\system32\*.* /5 %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\config\*.sav %systemroot%\Tasks\*.job /lockedfiles %systemroot%\*.* /U /s %systemroot%\*. /mp /s %ALLUSERSPROFILE%\Data Aplikací\*.* %ALLUSERSPROFILE%\Data Aplikací\*.exe /s %ALLUSERSPROFILE%\Dáta aplikácií\*.* %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s %APPDATA%\*. *crack* /s *keygen* /s *serial* /s *nocd* /s *nodvd* /s *AutoKMS* /s *AutoRearm* /s *Office 2010* /s *Razor* /s *Loader* /s *w7lxe* /s *Legalizator* /s *GenuineXP* /s *Registration* /s *minodlogin* /s *enterprise* /s serial.txt /s %APPDATA%\*.* %APPDATA%\*.exe /s %SYSTEMDRIVE%\*.exe HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSucces sTime /rs reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c type c:\boot.ini >> test.txt /c %SystemDrive%\PhysicalMBR.bin /md5 - Klikněte na tlačítko Prohledat
- Po dokončení skenu,který trvá mezi 5-15 minuty se vám zobrazý dva logy OTL.txt a Extras.txt a ty mě sem vložte
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivní kontrolu.Děkuji
nepodařilo se mi odinstalovat Pandora Tv Toolbar 
nevím jak tu dostat výpisy z OTL.píše mi to že je povoleno 80tis znaků a jeden výpis má kolem 250tis
nevím jak tu dostat výpisy z OTL.píše mi to že je povoleno 80tis znaků a jeden výpis má kolem 250tis
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu.Děkuji
Log rozdělte na více příspěvků
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivní kontrolu.Děkuji
OTL logfile created on: 25.10.2011 15:12:11 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\lada\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 36,98% Memory free
8,00 Gb Paging File | 4,80 Gb Available in Paging File | 59,97% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 160,69 Gb Total Space | 50,19 Gb Free Space | 31,24% Space Free | Partition Type: NTFS
Drive D: | 171,07 Gb Total Space | 48,46 Gb Free Space | 28,33% Space Free | Partition Type: NTFS
Drive E: | 201,53 Gb Total Space | 119,44 Gb Free Space | 59,27% Space Free | Partition Type: NTFS
Drive F: | 304,71 Gb Total Space | 66,12 Gb Free Space | 21,70% Space Free | Partition Type: NTFS
Drive G: | 129,08 Gb Total Space | 53,36 Gb Free Space | 41,34% Space Free | Partition Type: NTFS
Drive H: | 337,03 Gb Total Space | 239,90 Gb Free Space | 71,18% Space Free | Partition Type: NTFS
Computer Name: LADA-PC | User Name: lada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - File not found --
PRC - [2011.10.25 15:08:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
PRC - [2011.10.01 18:32:12 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
PRC - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.08.24 03:13:45 | 000,230,696 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe
PRC - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
PRC - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
PRC - [2011.05.04 04:52:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWOW64\java.exe
PRC - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
PRC - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
PRC - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () -- C:\ProgramData\TVersity\Media Server\MediaServer.exe
PRC - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe
PRC - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
PRC - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
PRC - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
========== Modules (No Company Name) ==========
MOD - [2011.10.01 18:32:12 | 001,833,944 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011.09.27 17:44:42 | 000,076,800 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCoreGecko7.dll
MOD - [2011.08.03 03:31:28 | 000,255,592 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.12.08 17:00:40 | 000,850,760 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\CleverCache\ooccag.exe -- (OOCleverCache)
SRV:64bit: - [2010.06.29 19:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009.08.18 00:19:24 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.05.08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License)
SRV - [2011.10.13 08:32:35 | 000,024,576 | ---- | M] (Realtek Semiconductor.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe -- (SetupARService)
SRV - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe -- (WO_LiveService)
SRV - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) [Auto | Running] -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server)
SRV - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2011.03.27 16:11:07 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe -- (AHDDC2)
SRV - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010.12.17 11:24:42 | 001,112,664 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) [Auto | Running] -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe -- (TwonkyMedia)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.04.14 11:28:44 | 000,073,728 | ---- | M] (Software602 a.s.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe -- (acthelper)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.12.06 02:04:28 | 000,458,928 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService)
SRV - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\lada\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 36,98% Memory free
8,00 Gb Paging File | 4,80 Gb Available in Paging File | 59,97% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 160,69 Gb Total Space | 50,19 Gb Free Space | 31,24% Space Free | Partition Type: NTFS
Drive D: | 171,07 Gb Total Space | 48,46 Gb Free Space | 28,33% Space Free | Partition Type: NTFS
Drive E: | 201,53 Gb Total Space | 119,44 Gb Free Space | 59,27% Space Free | Partition Type: NTFS
Drive F: | 304,71 Gb Total Space | 66,12 Gb Free Space | 21,70% Space Free | Partition Type: NTFS
Drive G: | 129,08 Gb Total Space | 53,36 Gb Free Space | 41,34% Space Free | Partition Type: NTFS
Drive H: | 337,03 Gb Total Space | 239,90 Gb Free Space | 71,18% Space Free | Partition Type: NTFS
Computer Name: LADA-PC | User Name: lada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - File not found --
PRC - [2011.10.25 15:08:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
PRC - [2011.10.01 18:32:12 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
PRC - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.08.24 03:13:45 | 000,230,696 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe
PRC - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
PRC - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
PRC - [2011.05.04 04:52:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWOW64\java.exe
PRC - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
PRC - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
PRC - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () -- C:\ProgramData\TVersity\Media Server\MediaServer.exe
PRC - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe
PRC - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
PRC - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
PRC - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
========== Modules (No Company Name) ==========
MOD - [2011.10.01 18:32:12 | 001,833,944 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011.09.27 17:44:42 | 000,076,800 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCoreGecko7.dll
MOD - [2011.08.03 03:31:28 | 000,255,592 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.12.08 17:00:40 | 000,850,760 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\CleverCache\ooccag.exe -- (OOCleverCache)
SRV:64bit: - [2010.06.29 19:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009.08.18 00:19:24 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.05.08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License)
SRV - [2011.10.13 08:32:35 | 000,024,576 | ---- | M] (Realtek Semiconductor.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe -- (SetupARService)
SRV - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe -- (WO_LiveService)
SRV - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) [Auto | Running] -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server)
SRV - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2011.03.27 16:11:07 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe -- (AHDDC2)
SRV - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010.12.17 11:24:42 | 001,112,664 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) [Auto | Running] -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe -- (TwonkyMedia)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.04.14 11:28:44 | 000,073,728 | ---- | M] (Software602 a.s.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe -- (acthelper)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.12.06 02:04:28 | 000,458,928 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService)
SRV - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
Re: Prosím o preventivní kontrolu.Děkuji
========== Modules (No Company Name) ==========
MOD - [2011.10.01 18:32:12 | 001,833,944 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011.09.27 17:44:42 | 000,076,800 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCoreGecko7.dll
MOD - [2011.08.03 03:31:28 | 000,255,592 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.12.08 17:00:40 | 000,850,760 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\CleverCache\ooccag.exe -- (OOCleverCache)
SRV:64bit: - [2010.06.29 19:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009.08.18 00:19:24 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.05.08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License)
SRV - [2011.10.13 08:32:35 | 000,024,576 | ---- | M] (Realtek Semiconductor.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe -- (SetupARService)
SRV - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe -- (WO_LiveService)
SRV - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) [Auto | Running] -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server)
SRV - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2011.03.27 16:11:07 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe -- (AHDDC2)
SRV - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010.12.17 11:24:42 | 001,112,664 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) [Auto | Running] -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe -- (TwonkyMedia)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.04.14 11:28:44 | 000,073,728 | ---- | M] (Software602 a.s.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe -- (acthelper)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.12.06 02:04:28 | 000,458,928 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService)
SRV - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.08.31 17:00:50 | 000,025,416 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011.08.08 17:21:13 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011.07.08 17:45:12 | 000,386,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS)
DRV:64bit: - [2011.07.06 12:44:00 | 000,034,288 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2011.05.19 15:55:34 | 000,120,920 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2011.05.18 10:14:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011.05.18 10:14:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011.05.18 10:14:16 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.05.18 10:14:12 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011.03.31 05:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011.03.31 05:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2011.03.15 04:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.23 16:50:14 | 000,018,232 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2011.01.27 08:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS)
DRV:64bit: - [2011.01.27 07:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON)
DRV:64bit: - [2011.01.25 12:40:06 | 000,142,936 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2011.01.06 11:32:04 | 000,285,280 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\afcdp.sys -- (afcdp)
DRV:64bit: - [2011.01.06 11:31:55 | 001,263,200 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tdrpm273.sys -- (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273)
DRV:64bit: - [2011.01.06 11:31:51 | 000,970,336 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\timntr.sys -- (timounter)
DRV:64bit: - [2011.01.06 11:31:40 | 000,277,088 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.20 13:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.11.20 12:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.10.17 09:51:15 | 000,828,912 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.09.19 14:58:02 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2010.09.19 14:58:01 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2010.06.10 19:00:06 | 000,036,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelsmb.sys -- (smbusp) Intel(R)
DRV:64bit: - [2010.06.03 20:10:22 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2010.04.18 11:42:08 | 000,252,728 | ---- | M] (COSECT, Computer Security Technologies Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\safetica.sys -- (Safetica)
DRV:64bit: - [2010.04.12 10:55:00 | 000,091,568 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2010.02.24 12:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11)
DRV:64bit: - [2010.02.17 20:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010.02.17 20:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2009.11.02 17:47:26 | 000,014,336 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gMouUsb.sys -- (gMouUsb)
DRV:64bit: - [2009.11.02 17:42:46 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gHidPnp.sys -- (gHidPnp)
DRV:64bit: - [2009.10.13 02:15:52 | 000,061,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l160x64.sys -- (AtcL001)
DRV:64bit: - [2009.08.08 00:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\WNt500x64\sandra.sys -- (SANDRA)
DRV:64bit: - [2009.07.16 11:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.25 16:44:44 | 000,686,592 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PFC027.SYS -- (PAC207)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.08.28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2008.03.17 19:12:26 | 000,028,664 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Ckldrv.sys -- (NetworkX)
DRV - [2011.10.15 01:10:08 | 001,155,704 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111014.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2011.09.29 14:38:34 | 002,048,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111024.009\EX64.SYS -- (NAVEX15)
DRV - [2011.09.29 14:38:34 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011.09.29 14:38:34 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011.09.29 14:38:34 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111024.009\ENG64.SYS -- (NAVENG)
DRV - [2011.08.25 13:06:52 | 000,148,976 | ---- | M] (CyberLink Corp.) [2011/10/22 10:49:23] [Kernel | Auto | Running] -- C:\Program Files (x86)\Cyberlink\PowerDVD11\Common\NavFilter\000.fcl -- ({329F96B6-DF1E-4328-BFDA-39EA953C1312})
DRV - [2011.08.23 00:17:32 | 000,488,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20111022.030\IDSviA64.sys -- (IDSVia64)
DRV - [2010.03.13 12:58:52 | 000,146,928 | ---- | M] (CyberLink Corp.) [2010/06/04 08:35:50] [Kernel | Auto | Running] -- C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\000.fcl -- ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC})
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.04.06 09:08:04 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
DRV - [2007.02.07 20:27:46 | 000,014,104 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - No CLSID value found
IE - HKLM\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {9384bd4c-dd14-4be9-80f7-f6277511e4f5} - No CLSID value found
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = D:\stahování explorer
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E B5 4D FE AC EB CA 01 [binary data]
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E B5 4D FE AC EB CA 01 [binary data]
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.06.26 20:02:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.09.06 15:46:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011.09.27 18:47:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_2_3 [2011.09.27 18:47:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ea614400-e918-4741-9a97-7a972ff7c30b}: C:\Program Files (x86)\Seznam.cz\firefox [2011.10.04 15:30:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.10.01 18:32:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.09.15 08:14:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.07.17 19:53:13 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\lada\AppData\Roaming\IDM\idmmzcc3 [2011.03.21 21:05:05 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{ea614400-e918-4741-9a97-7a972ff7c30b}: C:\Program Files (x86)\Seznam.cz\firefox [2011.10.04 15:30:05 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\lada\AppData\Roaming\IDM\idmmzcc3 [2011.03.21 21:05:05 | 000,000,000 | ---D | M]
[2010.05.04 19:14:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Extensions
[2011.10.21 10:40:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions
[2011.09.08 11:31:48 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2011.09.28 18:04:19 | 000,000,000 | ---D | M] (Softonic-Eng7 Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2011.10.10 22:33:02 | 000,000,000 | ---D | M] (TVersitybar Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}
[2011.09.27 14:14:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.09.28 18:04:19 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
[2010.10.03 18:50:32 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2011.10.21 10:40:15 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.01.30 12:48:31 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\battlefieldheroespatcher@ea.com
[2011.04.23 08:21:11 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\DTToolbar@toolbarnet.com
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\support@predictad.com
[2011.04.13 11:09:43 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\toolbar@ask.com
[2011.02.06 12:43:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions
[2011.04.11 20:51:03 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.06.28 19:05:39 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\support@predictad.com
[2011.10.25 14:54:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions
[2010.05.12 13:13:12 | 000,000,000 | ---D | M] (WebTran) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010.05.09 18:07:24 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2010.05.31 10:08:57 | 000,000,000 | ---D | M] (AniWeather) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}
[2011.04.11 20:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.05.31 09:27:07 | 000,000,000 | ---D | M] (Firefox Throttle) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{ca8b7b3d-b6e6-438f-b935-601b3de48d66}
[2010.05.07 08:01:22 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\support@predictad.com
[2011.03.24 13:03:00 | 000,000,923 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\conduit.xml
[2010.08.16 21:23:01 | 000,002,059 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\daemon-search.xml
[2010.07.15 10:12:22 | 000,004,855 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\google-images.xml
[2011.10.24 22:17:11 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-1.xml
[2011.03.05 21:15:08 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-2.xml
[2011.03.12 18:57:41 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-3.xml
[2011.03.18 08:20:37 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-4.xml
[2011.04.30 07:42:06 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-5.xml
[2011.06.29 22:31:23 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-6.xml
[2011.08.16 18:25:20 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-7.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin.xml
[2011.10.25 14:46:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011.07.07 20:36:20 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010.07.24 19:34:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.30 18:45:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.10.18 12:03:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.03.07 14:05:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.08.15 18:20:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.09.27 18:47:34 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\COFFPLGN_2011_7_2_3
[2011.09.27 18:47:37 | 000,000,000 | ---D | M] (Symantec IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPLGN
() (No name found) -- C:\USERS\LADA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6E8O6EJS.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.10.01 18:32:12 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.05.04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.12 22:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2010.12.24 09:19:27 | 000,003,189 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\acpro.xml
[2011.06.20 20:14:58 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
[2011.10.01 18:32:11 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.01 18:32:11 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.01 18:32:11 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.01 18:32:11 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.01 18:32:11 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: Facemoods = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.4_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.126_0\
Hosts file not found
O2:64bit: - BHO: (no name) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - No CLSID value found.
O2:64bit: - BHO: (no name) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll ()
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [RemoteControl11] C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [] File not found
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [Advanced SystemCare 4] C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileAssociate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartmenuLogoff = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSecCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartmenuLogoff = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSecCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Add to Playlist - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8:64bit: - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8:64bit: - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8:64bit: - Extra context menu item: TwonkyBeam to - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Add to Playlist - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: TwonkyBeam to - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.7 212.47.0.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{95C9C385-095A-4B3E-B6A4-A2396773D3D0}: DhcpNameServer = 192.168.1.7 212.47.0.4
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000 Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003 Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{25355ae6-57a8-11df-a095-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\{25355ae6-57a8-11df-a095-001d60d4645b}\Shell\AutoRun\command - "" = J:\autorun.exe
O33 - MountPoints2\{adeeabfd-5b4f-11df-9d3d-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\{f9dd97d0-a96b-11df-9e17-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\L\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
MOD - [2011.10.01 18:32:12 | 001,833,944 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011.09.27 17:44:42 | 000,076,800 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCoreGecko7.dll
MOD - [2011.08.03 03:31:28 | 000,255,592 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.12.08 17:00:40 | 000,850,760 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\CleverCache\ooccag.exe -- (OOCleverCache)
SRV:64bit: - [2010.06.29 19:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009.08.18 00:19:24 | 000,093,848 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.05.08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License)
SRV - [2011.10.13 08:32:35 | 000,024,576 | ---- | M] (Realtek Semiconductor.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe -- (SetupARService)
SRV - [2011.09.28 09:45:12 | 000,885,160 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe -- (WO_LiveService)
SRV - [2011.08.31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.08.18 15:47:48 | 000,819,976 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.11.0)
SRV - [2011.08.09 16:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.05.17 09:27:48 | 000,366,872 | ---- | M] (Tanuki Software, Ltd.) [Auto | Running] -- C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server)
SRV - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe -- (N360)
SRV - [2011.03.27 16:11:07 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.02.18 11:32:00 | 001,515,864 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe -- (AHDDC2)
SRV - [2011.01.06 11:32:02 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2010.12.17 11:24:42 | 001,112,664 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2010.11.24 22:33:26 | 000,921,600 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2010.11.04 03:58:46 | 000,497,240 | ---- | M] (PacketVideo) [Auto | Running] -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe -- (TwonkyMedia)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.07.07 17:17:00 | 002,156,952 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.04.14 11:28:44 | 000,073,728 | ---- | M] (Software602 a.s.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.12.23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.09.25 15:03:30 | 000,902,488 | ---- | M] (Ashampoo Development GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe -- (acthelper)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.12.06 02:04:28 | 000,458,928 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\USB Safely Remove\USBSRService.exe -- (USBSafelyRemoveService)
SRV - [2007.04.13 08:49:00 | 000,101,528 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.08.31 17:00:50 | 000,025,416 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011.08.08 17:21:13 | 000,174,200 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011.07.08 17:45:12 | 000,386,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\symnets.sys -- (SymNetS)
DRV:64bit: - [2011.07.06 12:44:00 | 000,034,288 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2011.05.19 15:55:34 | 000,120,920 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2011.05.18 10:14:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011.05.18 10:14:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011.05.18 10:14:16 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.05.18 10:14:12 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011.03.31 05:00:09 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011.03.31 05:00:09 | 000,040,568 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2011.03.15 04:31:23 | 000,912,504 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.23 16:50:14 | 000,018,232 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2011.01.27 08:47:10 | 000,450,680 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\SymDS64.sys -- (SymDS)
DRV:64bit: - [2011.01.27 07:07:06 | 000,171,128 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0501000.01D\Ironx64.sys -- (SymIRON)
DRV:64bit: - [2011.01.25 12:40:06 | 000,142,936 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2011.01.06 11:32:04 | 000,285,280 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\afcdp.sys -- (afcdp)
DRV:64bit: - [2011.01.06 11:31:55 | 001,263,200 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tdrpm273.sys -- (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273)
DRV:64bit: - [2011.01.06 11:31:51 | 000,970,336 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\timntr.sys -- (timounter)
DRV:64bit: - [2011.01.06 11:31:40 | 000,277,088 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\snapman.sys -- (snapman)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.20 13:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.11.20 12:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.10.17 09:51:15 | 000,828,912 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.09.19 14:58:02 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2010.09.19 14:58:01 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2010.06.10 19:00:06 | 000,036,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelsmb.sys -- (smbusp) Intel(R)
DRV:64bit: - [2010.06.03 20:10:22 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2010.04.18 11:42:08 | 000,252,728 | ---- | M] (COSECT, Computer Security Technologies Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\safetica.sys -- (Safetica)
DRV:64bit: - [2010.04.12 10:55:00 | 000,091,568 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2010.02.24 12:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11)
DRV:64bit: - [2010.02.17 20:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010.02.17 20:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2009.11.02 17:47:26 | 000,014,336 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gMouUsb.sys -- (gMouUsb)
DRV:64bit: - [2009.11.02 17:42:46 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\gHidPnp.sys -- (gHidPnp)
DRV:64bit: - [2009.10.13 02:15:52 | 000,061,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l160x64.sys -- (AtcL001)
DRV:64bit: - [2009.08.08 00:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\WNt500x64\sandra.sys -- (SANDRA)
DRV:64bit: - [2009.07.16 11:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.25 16:44:44 | 000,686,592 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PFC027.SYS -- (PAC207)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.08.28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2008.03.17 19:12:26 | 000,028,664 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Ckldrv.sys -- (NetworkX)
DRV - [2011.10.15 01:10:08 | 001,155,704 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111014.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2011.09.29 14:38:34 | 002,048,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111024.009\EX64.SYS -- (NAVEX15)
DRV - [2011.09.29 14:38:34 | 000,481,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2011.09.29 14:38:34 | 000,136,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011.09.29 14:38:34 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20111024.009\ENG64.SYS -- (NAVENG)
DRV - [2011.08.25 13:06:52 | 000,148,976 | ---- | M] (CyberLink Corp.) [2011/10/22 10:49:23] [Kernel | Auto | Running] -- C:\Program Files (x86)\Cyberlink\PowerDVD11\Common\NavFilter\000.fcl -- ({329F96B6-DF1E-4328-BFDA-39EA953C1312})
DRV - [2011.08.23 00:17:32 | 000,488,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20111022.030\IDSviA64.sys -- (IDSVia64)
DRV - [2010.03.13 12:58:52 | 000,146,928 | ---- | M] (CyberLink Corp.) [2010/06/04 08:35:50] [Kernel | Auto | Running] -- C:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\000.fcl -- ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC})
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.04.06 09:08:04 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
DRV - [2007.02.07 20:27:46 | 000,014,104 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - No CLSID value found
IE - HKLM\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {9384bd4c-dd14-4be9-80f7-f6277511e4f5} - No CLSID value found
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = D:\stahování explorer
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/#utm_source=icq&u ... um=generic
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E B5 4D FE AC EB CA 01 [binary data]
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E B5 4D FE AC EB CA 01 [binary data]
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - No CLSID value found
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.06.26 20:02:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.09.06 15:46:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011.09.27 18:47:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_2_3 [2011.09.27 18:47:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ea614400-e918-4741-9a97-7a972ff7c30b}: C:\Program Files (x86)\Seznam.cz\firefox [2011.10.04 15:30:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.10.01 18:32:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.09.15 08:14:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.07.17 19:53:13 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\lada\AppData\Roaming\IDM\idmmzcc3 [2011.03.21 21:05:05 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{ea614400-e918-4741-9a97-7a972ff7c30b}: C:\Program Files (x86)\Seznam.cz\firefox [2011.10.04 15:30:05 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\lada\AppData\Roaming\IDM\idmmzcc3 [2011.03.21 21:05:05 | 000,000,000 | ---D | M]
[2010.05.04 19:14:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Extensions
[2011.10.21 10:40:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions
[2011.09.08 11:31:48 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2011.09.28 18:04:19 | 000,000,000 | ---D | M] (Softonic-Eng7 Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}
[2011.10.10 22:33:02 | 000,000,000 | ---D | M] (TVersitybar Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}
[2011.09.27 14:14:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.09.28 18:04:19 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
[2010.10.03 18:50:32 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2011.10.21 10:40:15 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2011.01.30 12:48:31 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\battlefieldheroespatcher@ea.com
[2011.04.23 08:21:11 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\DTToolbar@toolbarnet.com
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\support@predictad.com
[2011.04.13 11:09:43 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\toolbar@ask.com
[2011.02.06 12:43:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions
[2011.04.11 20:51:03 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.06.28 19:05:39 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\support@predictad.com
[2011.10.25 14:54:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions
[2010.05.12 13:13:12 | 000,000,000 | ---D | M] (WebTran) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010.05.09 18:07:24 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2010.05.31 10:08:57 | 000,000,000 | ---D | M] (AniWeather) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}
[2011.04.11 20:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.05.31 09:27:07 | 000,000,000 | ---D | M] (Firefox Throttle) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{ca8b7b3d-b6e6-438f-b935-601b3de48d66}
[2010.05.07 08:01:22 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.12.24 09:19:27 | 000,000,000 | ---D | M] ("AutocompletePro - Your handy search suggestions tool") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\support@predictad.com
[2011.03.24 13:03:00 | 000,000,923 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\conduit.xml
[2010.08.16 21:23:01 | 000,002,059 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\daemon-search.xml
[2010.07.15 10:12:22 | 000,004,855 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\google-images.xml
[2011.10.24 22:17:11 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-1.xml
[2011.03.05 21:15:08 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-2.xml
[2011.03.12 18:57:41 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-3.xml
[2011.03.18 08:20:37 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-4.xml
[2011.04.30 07:42:06 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-5.xml
[2011.06.29 22:31:23 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-6.xml
[2011.08.16 18:25:20 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-7.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin.xml
[2011.10.25 14:46:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011.07.07 20:36:20 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010.07.24 19:34:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.30 18:45:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.10.18 12:03:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.03.07 14:05:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.08.15 18:20:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.09.27 18:47:34 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\COFFPLGN_2011_7_2_3
[2011.09.27 18:47:37 | 000,000,000 | ---D | M] (Symantec IPS) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPLGN
() (No name found) -- C:\USERS\LADA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6E8O6EJS.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.10.01 18:32:12 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.05.04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.12 22:03:50 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2010.12.24 09:19:27 | 000,003,189 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\acpro.xml
[2011.06.20 20:14:58 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
[2011.10.01 18:32:11 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.01 18:32:11 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.01 18:32:11 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.01 18:32:11 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.01 18:32:11 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: Facemoods = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.4_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.126_0\
Hosts file not found
O2:64bit: - BHO: (no name) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - No CLSID value found.
O2:64bit: - BHO: (no name) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - No CLSID value found.
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll ()
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [RemoteControl11] C:\Program Files (x86)\Cyberlink\PowerDVD11\PDVD11Serv.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [] File not found
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [Advanced SystemCare 4] C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileAssociate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartmenuLogoff = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSecCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartmenuLogoff = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarCustomize = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSecCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCpl = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Add to Playlist - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8:64bit: - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8:64bit: - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8:64bit: - Extra context menu item: TwonkyBeam to - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Add to Playlist - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: TwonkyBeam to - C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll (PacketVideo)
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll ()
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.7 212.47.0.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{95C9C385-095A-4B3E-B6A4-A2396773D3D0}: DhcpNameServer = 192.168.1.7 212.47.0.4
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000 Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003 Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{25355ae6-57a8-11df-a095-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\{25355ae6-57a8-11df-a095-001d60d4645b}\Shell\AutoRun\command - "" = J:\autorun.exe
O33 - MountPoints2\{adeeabfd-5b4f-11df-9d3d-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\{f9dd97d0-a96b-11df-9e17-001d60d4645b}\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\L\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
Re: Prosím o preventivní kontrolu.Děkuji
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FFDS - ff_vfw.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.ac3filter - ac3filter.acm File not found
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\SysWow64\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\Windows\SysWow64\lhacm.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011.10.25 15:08:45 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
[2011.10.25 08:24:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2011.10.25 08:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011.10.24 17:33:43 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3D World Map
[2011.10.24 17:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3D World Map
[2011.10.24 17:33:42 | 000,000,000 | ---D | C] -- C:\Program Files\Longgame
[2011.10.22 10:49:08 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 11
[2011.10.22 10:45:13 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CyberLink
[2011.10.22 10:41:57 | 000,000,000 | ---D | C] -- C:\ProgramData\PDVD
[2011.10.22 10:41:37 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Local\MediaServer
[2011.10.22 10:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2011.10.22 10:39:01 | 000,000,000 | ---D | C] -- C:\Users\lada\Desktop\power
[2011.10.21 16:16:19 | 000,000,000 | ---D | C] -- C:\convert
[2011.10.21 15:20:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Readon
[2011.10.19 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\lada\Documents\Might & Magic Heroes VI
[2011.10.19 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2011.10.19 15:15:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2011.10.01 19:44:38 | 017,497,784 | ---- | C] (Ventis Media Inc. ) -- C:\Users\lada\AppData\Local\MediaMonkey_4.0.0.1435_Debug.exe
[2010.08.18 20:17:24 | 007,846,904 | ---- | C] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2010.08.15 20:24:28 | 012,017,880 | ---- | C] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\lada\AppData\Roaming\pcouffin.sys
[2010.05.04 20:58:16 | 006,652,432 | ---- | C] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
========== Files - Modified Within 7 Days ==========
[2011.10.25 15:13:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.10.25 15:11:00 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.10.25 15:08:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
[2011.10.25 14:52:50 | 000,006,216 | ---- | M] () -- C:\Users\lada\Documents\cc_20111025_145244.reg
[2011.10.25 14:49:58 | 000,001,032 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job
[2011.10.25 10:25:52 | 000,000,318 | ---- | M] () -- C:\Windows\SysWow64\tversity.cookies
[2011.10.25 08:48:58 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.25 08:48:58 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2011.10.25 08:43:49 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.10.25 08:43:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.25 08:43:23 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.25 08:24:57 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.10.25 07:08:16 | 000,000,404 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job
[2011.10.24 17:33:44 | 000,001,960 | ---- | M] () -- C:\Users\lada\Desktop\3D World Map.lnk
[2011.10.24 17:33:43 | 000,770,048 | ---- | M] () -- C:\Windows\3D World Map.scr
[2011.10.23 18:34:58 | 000,247,713 | ---- | M] () -- C:\Users\lada\Desktop\100_1129.jpg
[2011.10.22 10:49:08 | 000,002,213 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDVD 11.lnk
[2011.10.21 15:16:23 | 000,003,157 | ---- | M] () -- C:\Users\lada\Desktop\Readon TV Movie Radio Player.lnk
[2011.10.20 01:46:59 | 000,005,008 | ---- | M] () -- C:\Users\lada\Documents\ax_files.xml
========== Files Created - No Company Name ==========
[2011.10.25 15:13:58 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.25 14:52:48 | 000,006,216 | ---- | C] () -- C:\Users\lada\Documents\cc_20111025_145244.reg
[2011.10.25 08:24:56 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.10.24 17:33:44 | 000,001,960 | ---- | C] () -- C:\Users\lada\Desktop\3D World Map.lnk
[2011.10.24 17:33:43 | 000,770,048 | ---- | C] () -- C:\Windows\3D World Map.scr
[2011.10.23 18:34:57 | 000,247,713 | ---- | C] () -- C:\Users\lada\Desktop\100_1129.jpg
[2011.10.22 10:49:08 | 000,002,213 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDVD 11.lnk
[2011.10.21 15:16:23 | 000,003,117 | ---- | C] () -- C:\Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Readon TV Movie Radio Player.lnk
[2011.10.21 15:12:48 | 000,003,157 | ---- | C] () -- C:\Users\lada\Desktop\Readon TV Movie Radio Player.lnk
[2011.10.18 21:35:29 | 000,648,567 | ---- | C] () -- C:\Users\lada\Desktop\TuneUp_Utilities_2011_v10_0_4410CZ.exe
[2011.10.01 19:44:39 | 000,354,816 | ---- | C] () -- C:\Users\lada\AppData\Local\sysstem23.exe
[2011.08.03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011.07.03 07:47:15 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011.07.03 07:47:15 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011.07.03 07:47:14 | 000,644,608 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011.07.03 07:47:14 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011.07.03 07:47:14 | 000,073,216 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.01.22 12:54:17 | 000,000,333 | ---- | C] () -- C:\Windows\wms.ini
[2011.01.22 12:54:14 | 000,000,146 | ---- | C] () -- C:\Windows\wmssetup.ini
[2011.01.01 09:51:42 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat
[2011.01.01 09:48:42 | 000,000,062 | ---- | C] () -- C:\Windows\Crypkey.ini
[2011.01.01 09:48:35 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2011.01.01 09:48:35 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2011.01.01 09:48:34 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2010.12.14 08:00:54 | 000,000,011 | ---- | C] () -- C:\ProgramData\.tv6
[2010.12.06 20:53:54 | 000,000,064 | ---- | C] () -- C:\ProgramData\sandra.ldb
[2010.11.18 12:55:40 | 000,000,098 | ---- | C] () -- C:\Windows\BackupManager.INI
[2010.11.15 14:25:09 | 014,835,712 | ---- | C] () -- C:\ProgramData\sandra.mda
[2010.11.03 11:23:25 | 000,339,456 | ---- | C] () -- C:\Windows\SysWow64\tx32.dll
[2010.10.10 21:05:20 | 000,007,606 | ---- | C] () -- C:\Users\lada\AppData\Local\Resmon.ResmonCfg
[2010.10.03 19:22:15 | 000,000,424 | ---- | C] () -- C:\Windows\SysWow64\secustat.dat
[2010.10.03 18:48:49 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2010.10.03 17:36:41 | 000,000,033 | ---- | C] () -- C:\Windows\DownloadStudioScheduleMonitor.INI
[2010.09.10 19:56:33 | 001,051,136 | ---- | C] () -- C:\Windows\SysWow64\drivers\CAMTHWDM.sys
[2010.08.26 19:37:23 | 000,000,072 | ---- | C] () -- C:\Windows\VcncDll.INI
[2010.07.08 20:43:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.06.28 21:46:23 | 000,000,157 | ---- | C] () -- C:\Users\lada\AppData\Roaming\default.rss
[2010.06.28 21:46:22 | 000,000,000 | ---- | C] () -- C:\Users\lada\AppData\Roaming\downloads.m3u
[2010.06.03 20:11:14 | 000,001,057 | ---- | C] () -- C:\Users\lada\AppData\Roaming\vso_ts_preview.xml
[2010.06.03 20:10:22 | 000,099,384 | ---- | C] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.06.03 20:10:22 | 000,007,859 | ---- | C] () -- C:\Users\lada\AppData\Roaming\pcouffin.cat
[2010.06.03 20:10:22 | 000,001,167 | ---- | C] () -- C:\Users\lada\AppData\Roaming\pcouffin.inf
[2010.05.17 13:46:33 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2010.05.12 13:09:22 | 000,002,686 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2010.05.12 09:54:52 | 000,039,424 | ---- | C] () -- C:\Users\lada\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.07 08:14:37 | 000,007,028 | -HS- | C] () -- C:\Windows\SysWow64\sys_drv_2.dat
[2010.05.07 08:14:36 | 000,197,728 | ---- | C] () -- C:\Windows\WinVd32.sys
[2010.05.07 08:14:35 | 000,021,888 | ---- | C] () -- C:\Windows\SysWow64\WinFLdrv.sys
[2010.05.07 08:14:35 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\WinFLsrv.exe
[2010.05.07 08:14:35 | 000,000,990 | -HS- | C] () -- C:\Users\lada\AppData\Roaming\systemfl.$dk
[2010.05.04 20:58:18 | 000,071,680 | ---- | C] () -- C:\Users\lada\AppData\Roaming\chrtmp
[2010.02.08 07:33:04 | 000,359,320 | ---- | C] () -- C:\Windows\SysWow64\vfprintpthelper.dll
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006.11.02 09:27:46 | 000,000,566 | ---- | C] () -- C:\Windows\SysWow64\SP207(440).ini
[2003.10.07 14:37:00 | 008,514,560 | ---- | C] () -- C:\Windows\SysWow64\Ancient Castle 3D Screensaver.exe
[2002.07.05 16:12:06 | 000,027,136 | ---- | C] () -- C:\Windows\SysWow64\authdvd.dll
========== LOP Check ==========
[2010.09.18 07:06:04 | 000,000,000 | -HSD | M] -- C:\Users\lada\AppData\Roaming\.#
[2010.10.19 21:16:57 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\251DED49-D900-4B9A-8D86-8883F63D8A4C
[2010.10.19 15:37:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\4Media
[2011.02.15 13:16:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602Installer
[2011.02.10 22:37:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602XML
[2010.05.09 16:39:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Acronis
[2010.05.28 19:38:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Ashampoo
[2011.01.28 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\avidemux
[2010.12.26 15:35:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BITS
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BitTorrent
[2011.03.02 13:19:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer
[2011.07.03 08:10:07 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer PRO
[2011.01.06 11:14:47 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953
[2010.08.30 17:59:51 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Canon
[2011.06.19 18:18:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ChemTable Software
[2010.10.03 17:36:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Conceiva
[2011.01.05 11:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\D57179AF-DDF7-44B0-A428-CB80756D4036
[2011.07.30 08:37:03 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DAEMON Tools Lite
[2011.03.01 17:13:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DMCache
[2011.08.08 08:32:34 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Easeware
[2011.06.20 20:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Fighters
[2010.10.03 18:48:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGet
[2010.10.03 18:48:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGetBHO
[2010.11.13 22:31:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GARMIN
[2010.05.14 08:28:44 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GetRightToGo
[2010.06.01 11:27:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GHISLER
[2010.09.30 12:19:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Graphisoft
[2011.10.24 20:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ICQ
[2011.03.21 21:09:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IDM
[2010.12.21 11:13:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\iJoysoft
[2010.11.19 23:24:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ImgBurn
[2011.06.29 22:22:52 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IObit
[2011.02.14 15:51:26 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kalypso Media
[2010.06.04 09:38:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kastner software
[2010.08.15 20:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Key Metric Software
[2010.05.12 13:16:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LangSoft
[2010.10.05 20:38:54 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Leadertech
[2011.01.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LolClient
[2011.10.13 09:02:13 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MediaMonkey
[2011.10.25 14:33:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2010.09.21 07:54:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mirillis
[2011.03.07 13:43:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MOBILedit
[2011.07.25 16:29:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mumble
[2010.08.14 08:32:02 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MusicMP3Downloader
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia Ovi Suite
[2010.06.01 12:04:10 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Notepad++
[2011.03.10 22:22:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PC Suite
[2011.01.04 17:28:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PMS
[2010.11.03 11:24:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Primal Pictures
[2011.07.21 19:14:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Registry Mechanic
[2010.07.27 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\runic games
[2010.12.08 23:59:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Smart PC Solutions
[2010.12.22 22:29:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Sports Interactive
[2010.05.19 15:41:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Stardock
[2010.12.06 09:02:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Systweak
[2011.05.18 23:18:35 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\The Creative Assembly
[2011.03.23 10:53:50 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Thinstall
[2010.09.11 22:31:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tific
[2011.09.12 12:27:59 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tropico 4
[2010.05.12 17:16:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TrueCrypt
[2010.08.23 01:34:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TS3Client
[2011.10.16 19:04:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software
[2010.11.02 08:26:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software-BackupByTuneUpPortable
[2010.12.14 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TwonkyMedia
[2010.10.19 15:28:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\UDC Profiles
[2010.12.27 11:44:08 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\USBSafelyRemove
[2011.03.21 20:38:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\uTorrent
[2011.02.22 11:19:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\VitySoft
[2010.12.21 19:12:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Vso
[2010.09.10 19:58:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Webcammax
[2011.07.03 07:45:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Win7codecs
[2011.01.05 18:16:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Zoner
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
[2011.10.25 07:08:16 | 000,000,404 | ---- | M] () -- C:\Windows\Tasks\DriverEasy Scheduled Scan.job
[2011.01.19 11:23:21 | 000,032,630 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(33).TXT
[2010.10.04 07:53:21 | 000,032,636 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(51).TXT
[2011.10.13 19:27:15 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: CSRSS.EXE >
[2009.07.14 03:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe
[2009.07.14 03:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe
< MD5 for: EXPLORER.EXE >
[2011.02.26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
< MD5 for: NDIS.SYS >
[2010.11.20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010.11.20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NTFS.SYS >
[2010.11.20 15:33:46 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=05D78AA5CB5F3F5C31160BDB955D0B7C -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17514_none_04972f2c338b23d4\ntfs.sys
[2009.07.14 03:48:27 | 001,659,984 | ---- | M] (Microsoft Corporation) MD5=356698A13C4630D5B31C37378D469196 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_02661b64369ca03a\ntfs.sys
[2011.03.11 08:23:06 | 001,657,216 | ---- | M] (Microsoft Corporation) MD5=378E0E0DFEA67D98AE6EA53ADBBD76BC -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16778_none_0273f3c63691c4ea\ntfs.sys
[2011.03.11 08:25:53 | 001,685,888 | ---- | M] (Microsoft Corporation) MD5=867C1395F0100CBE9ACD73B1C2741149 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.20921_none_032ca00d4f8d24c5\ntfs.sys
[2011.03.11 08:19:20 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=87B104128D4D3BA3C13098BAEBF38082 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.21680_none_04d11b5b4ce521d9\ntfs.sys
[2011.03.11 08:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\SysNative\drivers\ntfs.sys
[2011.03.11 08:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17577_none_0459508233b9177f\ntfs.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SPOOLSV.EXE >
[2010.08.20 07:38:12 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=8547491BE7086EE317163365D83A37D2 -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_32ca3745f45762fc\spoolsv.exe
[2009.07.14 03:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=89E8550C5862999FCF482EA562B0E98E -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe
[2010.11.20 15:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=B96C17B5DC1424D56EEA3A99E97428CD -- C:\Windows\SysNative\spoolsv.exe
[2010.11.20 15:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=B96C17B5DC1424D56EEA3A99E97428CD -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.17514_none_3471a890d8284f57\spoolsv.exe
[2010.08.21 08:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_3252392adb2d25f4\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 07:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2010.11.20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2011.06.21 08:16:55 | 001,888,128 | ---- | M] (Microsoft Corporation) MD5=5279D4DD69C7C71524B8E7A5746D15CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_0f8ed978993fa916\tcpip.sys
[2010.06.14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2011.04.25 07:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011.04.25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011.06.21 08:20:30 | 001,914,752 | ---- | M] (Microsoft Corporation) MD5=A0EB71E0DC047C7CC95CD6AB4036296E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_11a276c29643d7ec\tcpip.sys
[2011.04.25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.06.21 08:27:14 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=B9D87C7707F058AC652A398CD28DE14B -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_0f4d1e3b7feb1307\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\SysNative\drivers\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_11327af77d12659c\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2009.07.14 03:40:18 | 000,084,992 | ---- | M] (CANON INC.) --
[2007.03.19 05:00:00 | 000,027,648 | ---- | M] (CANON INC.) --
[2007.03.19 05:00:00 | 000,082,944 | ---- | M] (CANON INC.) --
[2009.07.14 03:41:12 | 000,027,648 | ---- | M] (Microsoft Corporation) --
[2010.11.20 15:27:28 | 000,039,424 | ---- | M] (Microsoft Corporation) --
[2009.07.14 17:17:26 | 000,003,584 | ---- | M] (Lexmark International Inc.) --
< %systemroot%\system32\drivers\*.sys /5 >
< %systemroot%\system32\drivers\*.sys /X >
[2009.06.10 23:14:29 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2009.06.10 23:14:29 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /5 >
[2011.10.25 10:25:52 | 000,000,318 | ---- | M] () -- C:\Windows\system32\tversity.cookies
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\config\*.sav >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\*.* /U /s >
[9 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >
< %APPDATA%\*. >
[2010.09.18 07:06:04 | 000,000,000 | -HSD | M] -- C:\Users\lada\AppData\Roaming\.#
[2010.10.19 21:16:57 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\251DED49-D900-4B9A-8D86-8883F63D8A4C
[2010.10.19 15:37:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\4Media
[2011.02.15 13:16:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602Installer
[2011.02.10 22:37:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602XML
[2011.09.12 16:53:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ABBYY
[2010.05.09 16:39:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Acronis
[2011.09.08 18:13:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Adobe
[2010.12.26 20:46:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Apple Computer
[2010.05.28 19:38:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Ashampoo
[2011.01.28 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\avidemux
[2010.12.26 15:35:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BITS
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BitTorrent
[2011.03.02 13:19:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer
[2011.07.03 08:10:07 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer PRO
[2011.01.06 11:14:47 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953
[2010.08.30 17:59:51 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Canon
[2011.06.19 18:18:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ChemTable Software
[2010.10.03 17:36:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Conceiva
[2011.10.22 10:46:01 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\CyberLink
[2011.01.05 11:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\D57179AF-DDF7-44B0-A428-CB80756D4036
[2011.07.30 08:37:03 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DAEMON Tools Lite
[2010.12.21 09:12:46 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DivX
[2011.03.01 17:13:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DMCache
[2011.08.08 08:32:34 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Easeware
[2011.06.20 20:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Fighters
[2010.10.03 18:48:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGet
[2010.10.03 18:48:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGetBHO
[2010.11.13 22:31:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GARMIN
[2010.05.14 08:28:44 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GetRightToGo
[2010.06.01 11:27:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GHISLER
[2010.09.30 12:19:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Graphisoft
[2011.10.25 15:24:20 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ICQ
[2010.05.04 18:53:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Identities
[2011.03.21 21:09:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IDM
[2010.12.21 11:13:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\iJoysoft
[2010.11.19 23:24:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ImgBurn
[2011.06.29 22:22:52 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IObit
[2011.02.14 15:51:26 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kalypso Media
[2010.06.04 09:38:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kastner software
[2010.08.15 20:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Key Metric Software
[2010.05.12 13:16:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LangSoft
[2010.10.05 20:38:54 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Leadertech
[2011.01.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LolClient
[2010.05.04 19:18:36 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Macromedia
[2010.11.09 20:22:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Malwarebytes
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Media Center Programs
[2011.09.27 19:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Media Player Classic
[2011.10.13 09:02:13 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MediaMonkey
[2011.09.08 18:13:27 | 000,000,000 | --SD | M] -- C:\Users\lada\AppData\Roaming\Microsoft
[2011.10.25 14:33:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2010.09.21 07:54:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mirillis
[2011.03.07 13:43:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MOBILedit
[2010.05.04 19:14:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mozilla
[2011.07.25 16:29:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mumble
[2010.08.14 08:32:02 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MusicMP3Downloader
[2010.10.17 10:32:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nero
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia Ovi Suite
[2010.06.01 12:04:10 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Notepad++
[2010.07.28 22:24:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\NVIDIA
[2011.03.10 22:22:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PC Suite
[2011.01.04 17:28:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PMS
[2010.11.03 11:24:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Primal Pictures
[2011.05.25 22:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Real
[2011.07.21 19:14:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Registry Mechanic
[2010.07.27 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\runic games
[2011.04.01 20:11:12 | 000,000,000 | RH-D | M] -- C:\Users\lada\AppData\Roaming\SecuROM
[2011.10.12 22:23:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Skype
[2011.05.17 00:00:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\skypePM
[2010.12.08 23:59:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Smart PC Solutions
[2010.12.22 22:29:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Sports Interactive
[2010.05.19 15:41:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Stardock
[2011.02.06 12:43:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\SUPERAntiSpyware.com
[2010.12.06 09:02:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Systweak
[2010.11.16 18:38:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\teamspeak2
[2011.05.18 23:18:35 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\The Creative Assembly
[2011.03.23 10:53:50 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Thinstall
[2010.09.11 22:31:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tific
[2011.09.12 12:27:59 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tropico 4
[2010.05.12 17:16:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TrueCrypt
[2010.08.23 01:34:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TS3Client
[2011.10.16 19:04:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software
[2010.11.02 08:26:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software-BackupByTuneUpPortable
[2010.12.14 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TwonkyMedia
[2011.03.02 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\U3
[2010.10.19 15:28:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\UDC Profiles
[2010.12.27 11:44:08 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\USBSafelyRemove
[2011.03.21 20:38:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\uTorrent
[2011.02.22 11:19:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\VitySoft
[2011.10.21 15:38:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\vlc
[2010.12.21 19:12:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Vso
[2010.09.10 19:58:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Webcammax
[2011.07.03 07:45:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Win7codecs
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Winamp
[2010.05.04 19:28:24 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\WinRAR
[2011.01.05 18:16:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Zoner
SafeBootMin:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FFDS - ff_vfw.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.ac3filter - ac3filter.acm File not found
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\SysWow64\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\Windows\SysWow64\lhacm.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011.10.25 15:08:45 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
[2011.10.25 08:24:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2011.10.25 08:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011.10.24 17:33:43 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3D World Map
[2011.10.24 17:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3D World Map
[2011.10.24 17:33:42 | 000,000,000 | ---D | C] -- C:\Program Files\Longgame
[2011.10.22 10:49:08 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 11
[2011.10.22 10:45:13 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CyberLink
[2011.10.22 10:41:57 | 000,000,000 | ---D | C] -- C:\ProgramData\PDVD
[2011.10.22 10:41:37 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Local\MediaServer
[2011.10.22 10:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\install_clap
[2011.10.22 10:39:01 | 000,000,000 | ---D | C] -- C:\Users\lada\Desktop\power
[2011.10.21 16:16:19 | 000,000,000 | ---D | C] -- C:\convert
[2011.10.21 15:20:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Readon
[2011.10.19 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\lada\Documents\Might & Magic Heroes VI
[2011.10.19 15:30:56 | 000,000,000 | ---D | C] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2011.10.19 15:15:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2011.10.01 19:44:38 | 017,497,784 | ---- | C] (Ventis Media Inc. ) -- C:\Users\lada\AppData\Local\MediaMonkey_4.0.0.1435_Debug.exe
[2010.08.18 20:17:24 | 007,846,904 | ---- | C] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2010.08.15 20:24:28 | 012,017,880 | ---- | C] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\lada\AppData\Roaming\pcouffin.sys
[2010.05.04 20:58:16 | 006,652,432 | ---- | C] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
========== Files - Modified Within 7 Days ==========
[2011.10.25 15:13:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.10.25 15:11:00 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.10.25 15:08:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\lada\Desktop\OTL.exe
[2011.10.25 14:52:50 | 000,006,216 | ---- | M] () -- C:\Users\lada\Documents\cc_20111025_145244.reg
[2011.10.25 14:49:58 | 000,001,032 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job
[2011.10.25 10:25:52 | 000,000,318 | ---- | M] () -- C:\Windows\SysWow64\tversity.cookies
[2011.10.25 08:48:58 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.25 08:48:58 | 000,022,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2011.10.25 08:43:49 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.10.25 08:43:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.25 08:43:23 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.25 08:24:57 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.10.25 07:08:16 | 000,000,404 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job
[2011.10.24 17:33:44 | 000,001,960 | ---- | M] () -- C:\Users\lada\Desktop\3D World Map.lnk
[2011.10.24 17:33:43 | 000,770,048 | ---- | M] () -- C:\Windows\3D World Map.scr
[2011.10.23 18:34:58 | 000,247,713 | ---- | M] () -- C:\Users\lada\Desktop\100_1129.jpg
[2011.10.22 10:49:08 | 000,002,213 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDVD 11.lnk
[2011.10.21 15:16:23 | 000,003,157 | ---- | M] () -- C:\Users\lada\Desktop\Readon TV Movie Radio Player.lnk
[2011.10.20 01:46:59 | 000,005,008 | ---- | M] () -- C:\Users\lada\Documents\ax_files.xml
========== Files Created - No Company Name ==========
[2011.10.25 15:13:58 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.25 14:52:48 | 000,006,216 | ---- | C] () -- C:\Users\lada\Documents\cc_20111025_145244.reg
[2011.10.25 08:24:56 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.10.24 17:33:44 | 000,001,960 | ---- | C] () -- C:\Users\lada\Desktop\3D World Map.lnk
[2011.10.24 17:33:43 | 000,770,048 | ---- | C] () -- C:\Windows\3D World Map.scr
[2011.10.23 18:34:57 | 000,247,713 | ---- | C] () -- C:\Users\lada\Desktop\100_1129.jpg
[2011.10.22 10:49:08 | 000,002,213 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDVD 11.lnk
[2011.10.21 15:16:23 | 000,003,117 | ---- | C] () -- C:\Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Readon TV Movie Radio Player.lnk
[2011.10.21 15:12:48 | 000,003,157 | ---- | C] () -- C:\Users\lada\Desktop\Readon TV Movie Radio Player.lnk
[2011.10.18 21:35:29 | 000,648,567 | ---- | C] () -- C:\Users\lada\Desktop\TuneUp_Utilities_2011_v10_0_4410CZ.exe
[2011.10.01 19:44:39 | 000,354,816 | ---- | C] () -- C:\Users\lada\AppData\Local\sysstem23.exe
[2011.08.03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011.07.03 07:47:15 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011.07.03 07:47:15 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011.07.03 07:47:14 | 000,644,608 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011.07.03 07:47:14 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011.07.03 07:47:14 | 000,073,216 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.01.22 12:54:17 | 000,000,333 | ---- | C] () -- C:\Windows\wms.ini
[2011.01.22 12:54:14 | 000,000,146 | ---- | C] () -- C:\Windows\wmssetup.ini
[2011.01.01 09:51:42 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat
[2011.01.01 09:48:42 | 000,000,062 | ---- | C] () -- C:\Windows\Crypkey.ini
[2011.01.01 09:48:35 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2011.01.01 09:48:35 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2011.01.01 09:48:34 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2010.12.14 08:00:54 | 000,000,011 | ---- | C] () -- C:\ProgramData\.tv6
[2010.12.06 20:53:54 | 000,000,064 | ---- | C] () -- C:\ProgramData\sandra.ldb
[2010.11.18 12:55:40 | 000,000,098 | ---- | C] () -- C:\Windows\BackupManager.INI
[2010.11.15 14:25:09 | 014,835,712 | ---- | C] () -- C:\ProgramData\sandra.mda
[2010.11.03 11:23:25 | 000,339,456 | ---- | C] () -- C:\Windows\SysWow64\tx32.dll
[2010.10.10 21:05:20 | 000,007,606 | ---- | C] () -- C:\Users\lada\AppData\Local\Resmon.ResmonCfg
[2010.10.03 19:22:15 | 000,000,424 | ---- | C] () -- C:\Windows\SysWow64\secustat.dat
[2010.10.03 18:48:49 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2010.10.03 17:36:41 | 000,000,033 | ---- | C] () -- C:\Windows\DownloadStudioScheduleMonitor.INI
[2010.09.10 19:56:33 | 001,051,136 | ---- | C] () -- C:\Windows\SysWow64\drivers\CAMTHWDM.sys
[2010.08.26 19:37:23 | 000,000,072 | ---- | C] () -- C:\Windows\VcncDll.INI
[2010.07.08 20:43:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.06.28 21:46:23 | 000,000,157 | ---- | C] () -- C:\Users\lada\AppData\Roaming\default.rss
[2010.06.28 21:46:22 | 000,000,000 | ---- | C] () -- C:\Users\lada\AppData\Roaming\downloads.m3u
[2010.06.03 20:11:14 | 000,001,057 | ---- | C] () -- C:\Users\lada\AppData\Roaming\vso_ts_preview.xml
[2010.06.03 20:10:22 | 000,099,384 | ---- | C] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.06.03 20:10:22 | 000,007,859 | ---- | C] () -- C:\Users\lada\AppData\Roaming\pcouffin.cat
[2010.06.03 20:10:22 | 000,001,167 | ---- | C] () -- C:\Users\lada\AppData\Roaming\pcouffin.inf
[2010.05.17 13:46:33 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2010.05.12 13:09:22 | 000,002,686 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2010.05.12 09:54:52 | 000,039,424 | ---- | C] () -- C:\Users\lada\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.07 08:14:37 | 000,007,028 | -HS- | C] () -- C:\Windows\SysWow64\sys_drv_2.dat
[2010.05.07 08:14:36 | 000,197,728 | ---- | C] () -- C:\Windows\WinVd32.sys
[2010.05.07 08:14:35 | 000,021,888 | ---- | C] () -- C:\Windows\SysWow64\WinFLdrv.sys
[2010.05.07 08:14:35 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\WinFLsrv.exe
[2010.05.07 08:14:35 | 000,000,990 | -HS- | C] () -- C:\Users\lada\AppData\Roaming\systemfl.$dk
[2010.05.04 20:58:18 | 000,071,680 | ---- | C] () -- C:\Users\lada\AppData\Roaming\chrtmp
[2010.02.08 07:33:04 | 000,359,320 | ---- | C] () -- C:\Windows\SysWow64\vfprintpthelper.dll
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006.11.02 09:27:46 | 000,000,566 | ---- | C] () -- C:\Windows\SysWow64\SP207(440).ini
[2003.10.07 14:37:00 | 008,514,560 | ---- | C] () -- C:\Windows\SysWow64\Ancient Castle 3D Screensaver.exe
[2002.07.05 16:12:06 | 000,027,136 | ---- | C] () -- C:\Windows\SysWow64\authdvd.dll
========== LOP Check ==========
[2010.09.18 07:06:04 | 000,000,000 | -HSD | M] -- C:\Users\lada\AppData\Roaming\.#
[2010.10.19 21:16:57 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\251DED49-D900-4B9A-8D86-8883F63D8A4C
[2010.10.19 15:37:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\4Media
[2011.02.15 13:16:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602Installer
[2011.02.10 22:37:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602XML
[2010.05.09 16:39:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Acronis
[2010.05.28 19:38:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Ashampoo
[2011.01.28 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\avidemux
[2010.12.26 15:35:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BITS
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BitTorrent
[2011.03.02 13:19:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer
[2011.07.03 08:10:07 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer PRO
[2011.01.06 11:14:47 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953
[2010.08.30 17:59:51 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Canon
[2011.06.19 18:18:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ChemTable Software
[2010.10.03 17:36:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Conceiva
[2011.01.05 11:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\D57179AF-DDF7-44B0-A428-CB80756D4036
[2011.07.30 08:37:03 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DAEMON Tools Lite
[2011.03.01 17:13:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DMCache
[2011.08.08 08:32:34 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Easeware
[2011.06.20 20:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Fighters
[2010.10.03 18:48:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGet
[2010.10.03 18:48:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGetBHO
[2010.11.13 22:31:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GARMIN
[2010.05.14 08:28:44 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GetRightToGo
[2010.06.01 11:27:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GHISLER
[2010.09.30 12:19:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Graphisoft
[2011.10.24 20:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ICQ
[2011.03.21 21:09:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IDM
[2010.12.21 11:13:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\iJoysoft
[2010.11.19 23:24:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ImgBurn
[2011.06.29 22:22:52 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IObit
[2011.02.14 15:51:26 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kalypso Media
[2010.06.04 09:38:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kastner software
[2010.08.15 20:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Key Metric Software
[2010.05.12 13:16:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LangSoft
[2010.10.05 20:38:54 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Leadertech
[2011.01.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LolClient
[2011.10.13 09:02:13 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MediaMonkey
[2011.10.25 14:33:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2010.09.21 07:54:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mirillis
[2011.03.07 13:43:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MOBILedit
[2011.07.25 16:29:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mumble
[2010.08.14 08:32:02 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MusicMP3Downloader
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia Ovi Suite
[2010.06.01 12:04:10 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Notepad++
[2011.03.10 22:22:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PC Suite
[2011.01.04 17:28:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PMS
[2010.11.03 11:24:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Primal Pictures
[2011.07.21 19:14:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Registry Mechanic
[2010.07.27 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\runic games
[2010.12.08 23:59:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Smart PC Solutions
[2010.12.22 22:29:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Sports Interactive
[2010.05.19 15:41:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Stardock
[2010.12.06 09:02:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Systweak
[2011.05.18 23:18:35 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\The Creative Assembly
[2011.03.23 10:53:50 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Thinstall
[2010.09.11 22:31:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tific
[2011.09.12 12:27:59 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tropico 4
[2010.05.12 17:16:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TrueCrypt
[2010.08.23 01:34:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TS3Client
[2011.10.16 19:04:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software
[2010.11.02 08:26:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software-BackupByTuneUpPortable
[2010.12.14 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TwonkyMedia
[2010.10.19 15:28:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\UDC Profiles
[2010.12.27 11:44:08 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\USBSafelyRemove
[2011.03.21 20:38:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\uTorrent
[2011.02.22 11:19:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\VitySoft
[2010.12.21 19:12:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Vso
[2010.09.10 19:58:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Webcammax
[2011.07.03 07:45:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Win7codecs
[2011.01.05 18:16:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Zoner
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
[2011.10.25 07:08:16 | 000,000,404 | ---- | M] () -- C:\Windows\Tasks\DriverEasy Scheduled Scan.job
[2011.01.19 11:23:21 | 000,032,630 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(33).TXT
[2010.10.04 07:53:21 | 000,032,636 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(51).TXT
[2011.10.13 19:27:15 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: CSRSS.EXE >
[2009.07.14 03:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe
[2009.07.14 03:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe
< MD5 for: EXPLORER.EXE >
[2011.02.26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
< MD5 for: NDIS.SYS >
[2010.11.20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010.11.20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NTFS.SYS >
[2010.11.20 15:33:46 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=05D78AA5CB5F3F5C31160BDB955D0B7C -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17514_none_04972f2c338b23d4\ntfs.sys
[2009.07.14 03:48:27 | 001,659,984 | ---- | M] (Microsoft Corporation) MD5=356698A13C4630D5B31C37378D469196 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_02661b64369ca03a\ntfs.sys
[2011.03.11 08:23:06 | 001,657,216 | ---- | M] (Microsoft Corporation) MD5=378E0E0DFEA67D98AE6EA53ADBBD76BC -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16778_none_0273f3c63691c4ea\ntfs.sys
[2011.03.11 08:25:53 | 001,685,888 | ---- | M] (Microsoft Corporation) MD5=867C1395F0100CBE9ACD73B1C2741149 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.20921_none_032ca00d4f8d24c5\ntfs.sys
[2011.03.11 08:19:20 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=87B104128D4D3BA3C13098BAEBF38082 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.21680_none_04d11b5b4ce521d9\ntfs.sys
[2011.03.11 08:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\SysNative\drivers\ntfs.sys
[2011.03.11 08:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17577_none_0459508233b9177f\ntfs.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SPOOLSV.EXE >
[2010.08.20 07:38:12 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=8547491BE7086EE317163365D83A37D2 -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_32ca3745f45762fc\spoolsv.exe
[2009.07.14 03:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=89E8550C5862999FCF482EA562B0E98E -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe
[2010.11.20 15:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=B96C17B5DC1424D56EEA3A99E97428CD -- C:\Windows\SysNative\spoolsv.exe
[2010.11.20 15:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=B96C17B5DC1424D56EEA3A99E97428CD -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7601.17514_none_3471a890d8284f57\spoolsv.exe
[2010.08.21 08:29:47 | 000,558,592 | ---- | M] (Microsoft Corporation) MD5=F8E1FA03CB70D54A9892AC88B91D1E7B -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_3252392adb2d25f4\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 07:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2010.11.20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2011.06.21 08:16:55 | 001,888,128 | ---- | M] (Microsoft Corporation) MD5=5279D4DD69C7C71524B8E7A5746D15CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_0f8ed978993fa916\tcpip.sys
[2010.06.14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2011.04.25 07:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011.04.25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011.06.21 08:20:30 | 001,914,752 | ---- | M] (Microsoft Corporation) MD5=A0EB71E0DC047C7CC95CD6AB4036296E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_11a276c29643d7ec\tcpip.sys
[2011.04.25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.06.21 08:27:14 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=B9D87C7707F058AC652A398CD28DE14B -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_0f4d1e3b7feb1307\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\SysNative\drivers\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_11327af77d12659c\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2009.07.14 03:40:18 | 000,084,992 | ---- | M] (CANON INC.) --
[2007.03.19 05:00:00 | 000,027,648 | ---- | M] (CANON INC.) --
[2007.03.19 05:00:00 | 000,082,944 | ---- | M] (CANON INC.) --
[2009.07.14 03:41:12 | 000,027,648 | ---- | M] (Microsoft Corporation) --
[2010.11.20 15:27:28 | 000,039,424 | ---- | M] (Microsoft Corporation) --
[2009.07.14 17:17:26 | 000,003,584 | ---- | M] (Lexmark International Inc.) --
< %systemroot%\system32\drivers\*.sys /5 >
< %systemroot%\system32\drivers\*.sys /X >
[2009.06.10 23:14:29 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2009.06.10 23:14:29 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /5 >
[2011.10.25 10:25:52 | 000,000,318 | ---- | M] () -- C:\Windows\system32\tversity.cookies
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\config\*.sav >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\*.* /U /s >
[9 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >
< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >
< %APPDATA%\*. >
[2010.09.18 07:06:04 | 000,000,000 | -HSD | M] -- C:\Users\lada\AppData\Roaming\.#
[2010.10.19 21:16:57 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\251DED49-D900-4B9A-8D86-8883F63D8A4C
[2010.10.19 15:37:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\4Media
[2011.02.15 13:16:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602Installer
[2011.02.10 22:37:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\602XML
[2011.09.12 16:53:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ABBYY
[2010.05.09 16:39:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Acronis
[2011.09.08 18:13:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Adobe
[2010.12.26 20:46:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Apple Computer
[2010.05.28 19:38:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Ashampoo
[2011.01.28 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\avidemux
[2010.12.26 15:35:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BITS
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BitTorrent
[2011.03.02 13:19:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer
[2011.07.03 08:10:07 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\BSplayer PRO
[2011.01.06 11:14:47 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953
[2010.08.30 17:59:51 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Canon
[2011.06.19 18:18:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ChemTable Software
[2010.10.03 17:36:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Conceiva
[2011.10.22 10:46:01 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\CyberLink
[2011.01.05 11:31:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\D57179AF-DDF7-44B0-A428-CB80756D4036
[2011.07.30 08:37:03 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DAEMON Tools Lite
[2010.12.21 09:12:46 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DivX
[2011.03.01 17:13:22 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\DMCache
[2011.08.08 08:32:34 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Easeware
[2011.06.20 20:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Fighters
[2010.10.03 18:48:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGet
[2010.10.03 18:48:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\FlashGetBHO
[2010.11.13 22:31:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GARMIN
[2010.05.14 08:28:44 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GetRightToGo
[2010.06.01 11:27:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\GHISLER
[2010.09.30 12:19:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Graphisoft
[2011.10.25 15:24:20 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ICQ
[2010.05.04 18:53:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Identities
[2011.03.21 21:09:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IDM
[2010.12.21 11:13:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\iJoysoft
[2010.11.19 23:24:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\ImgBurn
[2011.06.29 22:22:52 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\IObit
[2011.02.14 15:51:26 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kalypso Media
[2010.06.04 09:38:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Kastner software
[2010.08.15 20:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Key Metric Software
[2010.05.12 13:16:48 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LangSoft
[2010.10.05 20:38:54 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Leadertech
[2011.01.11 19:57:00 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\LolClient
[2010.05.04 19:18:36 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Macromedia
[2010.11.09 20:22:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Malwarebytes
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Media Center Programs
[2011.09.27 19:24:29 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Media Player Classic
[2011.10.13 09:02:13 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MediaMonkey
[2011.09.08 18:13:27 | 000,000,000 | --SD | M] -- C:\Users\lada\AppData\Roaming\Microsoft
[2011.10.25 14:33:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
[2010.09.21 07:54:53 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mirillis
[2011.03.07 13:43:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MOBILedit
[2010.05.04 19:14:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mozilla
[2011.07.25 16:29:27 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Mumble
[2010.08.14 08:32:02 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\MusicMP3Downloader
[2010.10.17 10:32:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nero
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia
[2011.08.09 06:55:05 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Nokia Ovi Suite
[2010.06.01 12:04:10 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Notepad++
[2010.07.28 22:24:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\NVIDIA
[2011.03.10 22:22:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PC Suite
[2011.01.04 17:28:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\PMS
[2010.11.03 11:24:30 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Primal Pictures
[2011.05.25 22:36:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Real
[2011.07.21 19:14:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Registry Mechanic
[2010.07.27 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\runic games
[2011.04.01 20:11:12 | 000,000,000 | RH-D | M] -- C:\Users\lada\AppData\Roaming\SecuROM
[2011.10.12 22:23:31 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Skype
[2011.05.17 00:00:42 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\skypePM
[2010.12.08 23:59:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Smart PC Solutions
[2010.12.22 22:29:21 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Sports Interactive
[2010.05.19 15:41:32 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Stardock
[2011.02.06 12:43:49 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\SUPERAntiSpyware.com
[2010.12.06 09:02:37 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Systweak
[2010.11.16 18:38:40 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\teamspeak2
[2011.05.18 23:18:35 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\The Creative Assembly
[2011.03.23 10:53:50 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Thinstall
[2010.09.11 22:31:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tific
[2011.09.12 12:27:59 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Tropico 4
[2010.05.12 17:16:14 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TrueCrypt
[2010.08.23 01:34:33 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TS3Client
[2011.10.16 19:04:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software
[2010.11.02 08:26:41 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TuneUp Software-BackupByTuneUpPortable
[2010.12.14 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\TwonkyMedia
[2011.03.02 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\U3
[2010.10.19 15:28:16 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\UDC Profiles
[2010.12.27 11:44:08 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\USBSafelyRemove
[2011.03.21 20:38:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\uTorrent
[2011.02.22 11:19:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\VitySoft
[2011.10.21 15:38:06 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\vlc
[2010.12.21 19:12:45 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Vso
[2010.09.10 19:58:17 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Webcammax
[2011.07.03 07:45:58 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Win7codecs
[2011.10.25 14:51:56 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Winamp
[2010.05.04 19:28:24 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\WinRAR
[2011.01.05 18:16:43 | 000,000,000 | ---D | M] -- C:\Users\lada\AppData\Roaming\Zoner
Re: Prosím o preventivní kontrolu.Děkuji
color=#A23BEC]< *crack* /s >[/color]
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \Documents and Settings\All Users\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_history.xml
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_structured.xml
[2011.03.13 16:35:45 | 114,376,696 | ---- | M] () -- \Documents and Settings\lada\Desktop\HRY\Robot Chicken Complete\s01\s01e05_nutcracker_sweet.mkv
[2011.03.13 18:00:29 | 109,466,169 | ---- | M] () -- \Documents and Settings\lada\Desktop\HRY\Robot Chicken Complete\s02\s02e07_cracked_china.mkv
[2009.04.08 23:06:58 | 000,113,544 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\black list\CMI.Technologies.Black.And.White.v1.40.S60v3.SymbianOS9.1.Unsigned.Cracked-CODePDA.sis
[2011.01.15 20:14:43 | 000,000,884 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\favicons\cracked.com.png
[2011.02.16 12:21:56 | 000,004,328 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\CrackedCom.class
[2011.02.28 12:54:21 | 000,000,889 | ---- | M] () -- \Program Files (x86)\Windows Doctor\backup\2011-03-03-22-51-41\driver-genius-professional-v10-0-0-712-multilingual-cracked-djinn-by-f-e-a-r-of-power-uploaders.rar.lnk.4.16.sbk
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \ProgramData\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \Users\All Users\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_history.xml
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_structured.xml
[2011.03.13 16:35:45 | 114,376,696 | ---- | M] () -- \Users\lada\Desktop\HRY\Robot Chicken Complete\s01\s01e05_nutcracker_sweet.mkv
[2011.03.13 18:00:29 | 109,466,169 | ---- | M] () -- \Users\lada\Desktop\HRY\Robot Chicken Complete\s02\s02e07_cracked_china.mkv
[2009.04.08 23:06:58 | 000,113,544 | ---- | M] () -- \Users\lada\Desktop\MOBIL\black list\CMI.Technologies.Black.And.White.v1.40.S60v3.SymbianOS9.1.Unsigned.Cracked-CODePDA.sis
< *keygen* /s >
[2008.07.25 23:42:44 | 000,035,328 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe
[2008.03.20 19:47:44 | 000,035,328 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe
[2008.07.25 23:42:44 | 000,035,328 | ---- | M] () -- \Users\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe
[2008.03.20 19:47:44 | 000,035,328 | ---- | M] () -- \Users\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe
< *serial* /s >
[2011.08.13 18:23:38 | 000,000,052 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Documents and Settings\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Downloads\tot conv\tot conv\Serial.txt
[2011.10.17 20:26:41 | 000,000,120 | ---- | M] () -- \Documents and Settings\lada\Favorites\WAREZ\Serials & keys - unlocks the world.URL
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Serial.txt
[2010.08.20 11:43:02 | 000,242,984 | ---- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore10\boost_serialization-mt.dll
[2010.08.20 11:43:16 | 000,165,160 | ---- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore10\boost_wserialization-mt.dll
[2010.12.09 17:02:54 | 000,009,127 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\rimserial.cat
[2010.12.09 17:02:52 | 000,001,594 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial.inf
[2010.12.09 17:02:52 | 000,027,136 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial.sys
[2010.12.09 17:02:52 | 000,031,744 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial_AMD64.sys
[2011.01.19 15:28:48 | 000,270,336 | ---- | M] () -- \Program Files (x86)\KASTNER software\FORM studio CZ\ManagerISDS.XmlSerializers.dll
[2011.08.30 17:58:34 | 000,413,696 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.dll
[2011.10.12 08:30:13 | 001,186,816 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.ni.dll
[2010.09.28 17:18:06 | 000,775,464 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\SetSerial.exe
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010.04.19 20:46:44 | 000,010,177 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\serialization.cpp
[2010.04.19 20:46:44 | 000,003,267 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\serialization.h
[2010.04.19 20:47:56 | 000,030,276 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.cs
[2010.04.19 20:47:56 | 000,004,259 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.csproj
[2010.04.19 20:47:56 | 000,005,515 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.resx
[2010.04.19 20:47:56 | 000,000,909 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.sln
[2010.04.19 20:48:12 | 000,002,400 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\web\WWSAPI\WcfPublicServiceClient\schemas.microsoft.com.2003.10.Serialization.xsd
[2010.11.05 03:52:08 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2011.08.13 18:23:38 | 000,000,052 | ---- | M] () -- \Users\lada\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Users\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Downloads\tot conv\tot conv\Serial.txt
[2011.10.17 20:26:41 | 000,000,120 | ---- | M] () -- \Users\lada\Favorites\WAREZ\Serials & keys - unlocks the world.URL
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Users\lada\Games\Unreal Tournament 3\Serial.txt
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.12 19:39:22 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\680689b01ddb7fbe11478caf8cb71d3c\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.13 08:17:10 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\76692f411b404f1db0c95d81dd537c37\System.Runtime.Serialization.ni.dll
[2011.10.13 10:29:09 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\1377c29b871c7eb768769b5f4bdbb15d\System.Runtime.Serialization.ni.dll
[2011.10.12 19:41:32 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\b3b42692707c0f555807def0c4acefe3\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.12 08:37:57 | 002,647,040 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\993f89ba22499c379d2a9dd25d13cd94\System.Runtime.Serialization.ni.dll
[2011.10.12 08:38:27 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\bed774dde4b62ed1d2d55c2d1769d600\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.12 08:42:11 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\3a2ab56bb224b871516526753985ff69\System.Xml.Serialization.ni.dll
[2011.10.13 10:48:28 | 000,376,832 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\6cd778cd2c8c61130ff71ee7a685222b\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.13 10:48:06 | 003,412,992 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\f68180d9f4ade9c313f9ad20422eb1c0\System.Runtime.Serialization.ni.dll
[2011.10.13 22:04:44 | 000,010,240 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Serializ#\59e70022e798ce28f9f5b8870c5c8bf2\System.Xml.Serialization.ni.dll
[2011.10.12 08:26:02 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.12 08:26:01 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.12 08:26:08 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 03:52:16 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 17:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2009.07.14 17:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2010.11.05 03:52:16 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2010.11.05 03:52:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2011.04.15 14:07:18 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.04.15 14:07:18 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2009.07.14 17:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 17:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2010.11.20 07:21:24 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2009.07.14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2010.11.20 07:22:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2010.11.20 06:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2009.07.14 17:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2010.11.20 06:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2010.11.20 06:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
< *nocd* /s >
< *nodvd* /s >
< *AutoKMS* /s >
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \Documents and Settings\All Users\AutoKMS\AutoKMS.cmd
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \ProgramData\AutoKMS\AutoKMS.cmd
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \Users\All Users\AutoKMS\AutoKMS.cmd
[2011.08.11 14:17:04 | 000,729,088 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.exe
[2011.08.11 14:17:04 | 000,000,286 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.ini
[2011.10.25 11:00:08 | 000,029,077 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.log
[2011.10.25 11:00:08 | 000,236,760 | ---- | M] () -- \Windows\Prefetch\AUTOKMS.EXE-97B3D7D9.pf
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- \Windows\Tasks\AutoKMS.job
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- \Windows\Tasks\AutoKMSDaily.job
< *AutoRearm* /s >
< *Office 2010* /s >
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
< *Razor* /s >
< *Loader* /s >
[2010.10.11 08:14:52 | 000,000,003 | ---- | M] () -- \7Loader.TAG
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \Documents and Settings\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \Documents and Settings\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \Documents and Settings\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.09.07 21:24:25 | 000,000,723 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\img\ajax-loader.gif
[2011.09.07 21:24:25 | 000,000,979 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\js\FMLoader_Obfs.js
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2010.08.16 21:22:58 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2010.10.03 18:30:00 | 000,003,043 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HotFile AutoDownloader 1.0\HotFile AutoDownloader 1.0.lnk
[2010.11.26 11:26:11 | 000,000,392 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2010.11.26 11:26:11 | 000,001,184 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2010.11.26 11:26:16 | 000,001,174 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2011.06.20 14:06:06 | 000,009,767 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.09.27 17:44:42 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\modules\ExternalLibraryLoader.jsm
[2011.10.10 16:57:32 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}\modules\ExternalLibraryLoader.jsm
[2011.09.27 14:11:06 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\modules\ExternalLibraryLoader.jsm
[2010.08.14 08:31:58 | 000,001,142 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\Music Mp3 Downloader.lnk
[2010.10.03 18:30:00 | 000,003,077 | ---- | M] () -- \Documents and Settings\lada\Desktop\NET\HotFile AutoDownloader 1.0.lnk
[2007.09.23 00:50:16 | 000,068,688 | R--- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Binaries\PhysXLocal\PhysXLoader.dll
[2011.06.20 20:15:14 | 000,001,051 | ---- | M] () -- \Documents and Settings\Public\Desktop\JDownloader.lnk
[2011.02.08 11:20:32 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader.exe
[2011.02.08 11:32:09 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_2.exe
[2011.02.08 11:32:55 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_3.exe
[2010.04.19 09:38:14 | 000,486,400 | ---- | M] () -- \Program Files (x86)\4Media\HD Video Converter 6\vcloader.exe
[2010.04.19 09:42:06 | 000,005,932 | ---- | M] () -- \Program Files (x86)\4Media\HD Video Converter 6\plugins\loader.avsi
[2009.04.05 12:41:34 | 000,267,575 | ---- | M] () -- \Program Files (x86)\Alcohol Soft\Alcohol 120\RmK-FreE_Loader.exe
[2010.10.02 19:42:57 | 000,000,001 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.02.15 08:22:28 | 000,335,872 | ---- | M] () -- \Program Files (x86)\Common Files\Nokia\Service Layer\A\nsl_loader.dll
[2011.04.14 11:35:32 | 000,131,072 | ---- | M] () -- \Program Files (x86)\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2010.03.15 13:20:28 | 000,010,781 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2010.03.15 13:20:34 | 000,003,492 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\widget\langloader.kc
[2010.03.15 13:20:34 | 000,013,453 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\widget\layoutloader.kc
[2010.02.05 00:34:54 | 000,010,775 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2010.02.05 00:34:54 | 000,003,486 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\widget\langloader.kc
[2010.02.05 00:34:54 | 000,013,369 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\widget\layoutloader.kc
[2011.08.24 03:13:45 | 000,000,035 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\ComLoader.ini
[2011.08.25 07:13:36 | 000,124,200 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Common\Koan\pyloader.dll
[2011.08.24 03:13:34 | 000,002,830 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Customizations\Generic\Style\Cascade\Media\Standard\SlideBar\ProgressLoader.png
[2011.08.19 12:03:38 | 000,028,126 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PK\subsys\PyImpLoader\PyImpLoader.kc
[2011.08.19 12:03:38 | 000,120,104 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PK\subsys\PyImpLoader\_PyImpLoader.pyd
[2011.08.12 09:26:27 | 000,012,088 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2011.08.12 09:26:28 | 000,002,692 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cinema\Presentation\Common\D3D9Loader.kc
[2011.08.16 12:03:40 | 000,012,022 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2011.08.24 03:13:48 | 000,001,731 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\FlvLoader.swf
[2011.08.24 03:13:48 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\KernelCtrl\D3D9Loader.kc
[2011.08.24 03:13:49 | 000,056,487 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\KernelCtrl\ImageLoader2.kc
[2011.08.24 03:13:50 | 000,004,045 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Widget\langloader.kc
[2011.08.24 03:13:50 | 000,014,262 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Widget\layoutloader.kc
[2010.05.10 11:34:50 | 000,026,112 | ---- | M] () -- \Program Files (x86)\Gameforge4D\4Story\TLoader.exe
[2011.01.29 14:25:50 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.01.29 14:25:50 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2011.01.29 14:25:50 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.01.29 14:25:50 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\icq_profile\preloader.html
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\profile_forms\preloader.html
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011.04.26 22:29:26 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.04.26 22:29:27 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.04.26 22:29:26 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.07.30 07:43:42 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.04.26 22:29:39 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.04.26 22:29:39 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011.10.04 15:20:09 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.04 15:20:09 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.04 15:20:09 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.04 15:20:21 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010.09.21 03:24:46 | 000,502,784 | ---- | M] () -- \Program Files (x86)\iJoysoft\MP4 Converter\vcloader.exe
[2010.10.13 06:55:16 | 000,005,932 | ---- | M] () -- \Program Files (x86)\iJoysoft\MP4 Converter\plugins\loader.avsi
[2011.05.25 19:19:52 | 001,013,456 | ---- | M] () -- \Program Files (x86)\IObit\Advanced SystemCare 4\Freeware\ASC_FreeSoftwareDownloader.exe
[2011.02.25 14:32:02 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.exe
[2011.02.25 13:49:26 | 000,743,728 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.jar
[2011.10.16 21:10:52 | 000,323,561 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.log
[2011.03.11 20:31:35 | 000,000,226 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.log.1
[2010.12.15 14:59:32 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderBETA.exe
[2010.12.15 14:59:32 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderD3D.exe
[2011.03.19 10:42:27 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderNIGHTLY.exe
[2010.11.26 11:29:33 | 000,001,010 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\favicons\jdownloader.org.png
[2011.02.16 12:21:10 | 000,007,069 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\UploaderPl.class
[2011.02.25 13:49:46 | 000,032,222 | ---- | M] () -- \Program Files (x86)\JDownloader\licenses\jdownloader.license
[2010.08.05 13:59:02 | 000,000,039 | ---- | M] () -- \Program Files (x86)\MSI Kombustor\kloader4ab.bat
[2010.08.05 16:33:12 | 000,034,304 | ---- | M] () -- \Program Files (x86)\MSI Kombustor\KLoaderWin32.exe
[2010.07.22 09:12:46 | 003,886,832 | ---- | M] () -- \Program Files (x86)\MusicMp3Downloader\MusicMp3Downloader.exe
[2011.07.13 15:44:18 | 000,017,976 | ---- | M] () -- \Program Files (x86)\Nokia\Nokia Ovi Suite\OviSuiteDownloader.dll
[2011.05.09 12:52:16 | 000,002,560 | ---- | M] () -- \Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 04:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2009.11.12 12:38:00 | 000,777,216 | ---- | M] () -- \Program Files (x86)\Shabestar.net\HotFile AutoDownloader\HotFileAutoDownloader.exe
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2011.02.28 12:54:21 | 000,000,889 | ---- | M] () -- \Program Files (x86)\Windows Doctor\backup\2011-03-03-22-51-41\driver-genius-professional-v10-0-0-712-multilingual-cracked-djinn-by-f-e-a-r-of-power-uploaders.rar.lnk.4.16.sbk
[2009.09.25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files (x86)\Windows Sidebar\Shared Gadgets\TuneUpUtilities.gadget\images\loader.gif
[2010.07.25 23:23:02 | 000,000,436 | ---- | M] () -- \Program Files (x86)\WinUtilities\language\English\plugins\Third-party Applications\Star Downloader.pl
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2010.04.19 20:46:32 | 000,002,326 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontCollectionLoader.cpp
[2010.04.19 20:46:32 | 000,001,660 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontCollectionLoader.h
[2010.04.19 20:46:32 | 000,002,780 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontFileLoader.cpp
[2010.04.19 20:46:32 | 000,001,555 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontFileLoader.h
[2010.04.19 20:46:44 | 000,000,628 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\xmldataloader.rgs
[2010.04.19 20:46:56 | 000,002,584 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\WMP\media\loader.hta
[2011.03.02 13:39:56 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2010.04.29 15:12:38 | 000,673,160 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Facebook\ZPSPluginLoader.exe
[2010.04.29 15:12:42 | 000,686,984 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 15:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Flickr\ZPSPluginLoader.exe
[2010.11.11 13:07:12 | 000,192,512 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Picasa\ZPSPluginLoader.exe
[2010.11.27 22:18:28 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program32\8bfLoader.exe
[2010.11.27 22:18:42 | 000,019,336 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program32\WICLoader.exe
[2010.11.27 22:19:50 | 000,021,896 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program64\WICLoader.exe
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.09.07 21:24:25 | 000,000,723 | ---- | M] () -- \Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\img\ajax-loader.gif
[2011.09.07 21:24:25 | 000,000,979 | ---- | M] () -- \Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\js\FMLoader_Obfs.js
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2010.08.16 21:22:58 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2010.10.03 18:30:00 | 000,003,043 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HotFile AutoDownloader 1.0\HotFile AutoDownloader 1.0.lnk
[2010.11.26 11:26:11 | 000,000,392 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2010.11.26 11:26:11 | 000,001,184 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2010.11.26 11:26:16 | 000,001,174 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2011.06.20 14:06:06 | 000,009,767 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.09.27 17:44:42 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\modules\ExternalLibraryLoader.jsm
[2011.10.10 16:57:32 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}\modules\ExternalLibraryLoader.jsm
[2011.09.27 14:11:06 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\modules\ExternalLibraryLoader.jsm
[2010.08.14 08:31:58 | 000,001,142 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\Music Mp3 Downloader.lnk
[2010.10.03 18:30:00 | 000,003,077 | ---- | M] () -- \Users\lada\Desktop\NET\HotFile AutoDownloader 1.0.lnk
[2007.09.23 00:50:16 | 000,068,688 | R--- | M] () -- \Users\lada\Games\Unreal Tournament 3\Binaries\PhysXLocal\PhysXLoader.dll
[2011.06.20 20:15:14 | 000,001,051 | ---- | M] () -- \Users\Public\Desktop\JDownloader.lnk
[2011.02.08 11:20:32 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader.exe
[2011.02.08 11:32:09 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_2.exe
[2011.02.08 11:32:55 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_3.exe
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2011.10.05 12:12:42 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.10.22 13:46:42 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2011.10.05 12:12:42 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.10.22 13:46:42 | 000,009,622 | ---- | M] () -- \Windows\SysWOW64\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:18:33 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_66f39ad995474166\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 08:23:09 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_66e5ca0f95521152\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:04:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_66c2596d956d1920\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:39:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_673e58b0ae93bb84\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:06:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_67770e0aae6a7c68\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:04:21 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:44:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_68ce27a99276afec\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:00:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:40:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_694ff566ab99b7ac\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2011.04.15 14:07:18 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.04.15 14:07:18 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2011.04.15 14:07:18 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2011.04.15 14:07:18 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2011.04.15 14:07:18 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 07:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:22:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_0ad4ff55dce9d030\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 07:45:50 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_0ac72e8bdcf4a01c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:19:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:50:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_0b1fbd2cf6364a4e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:13:36 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \Documents and Settings\All Users\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_history.xml
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_structured.xml
[2011.03.13 16:35:45 | 114,376,696 | ---- | M] () -- \Documents and Settings\lada\Desktop\HRY\Robot Chicken Complete\s01\s01e05_nutcracker_sweet.mkv
[2011.03.13 18:00:29 | 109,466,169 | ---- | M] () -- \Documents and Settings\lada\Desktop\HRY\Robot Chicken Complete\s02\s02e07_cracked_china.mkv
[2009.04.08 23:06:58 | 000,113,544 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\black list\CMI.Technologies.Black.And.White.v1.40.S60v3.SymbianOS9.1.Unsigned.Cracked-CODePDA.sis
[2011.01.15 20:14:43 | 000,000,884 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\favicons\cracked.com.png
[2011.02.16 12:21:56 | 000,004,328 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\CrackedCom.class
[2011.02.28 12:54:21 | 000,000,889 | ---- | M] () -- \Program Files (x86)\Windows Doctor\backup\2011-03-03-22-51-41\driver-genius-professional-v10-0-0-712-multilingual-cracked-djinn-by-f-e-a-r-of-power-uploaders.rar.lnk.4.16.sbk
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \ProgramData\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2009.02.27 16:39:24 | 000,002,394 | ---- | M] () -- \Users\All Users\IMSIDesign\TurboFLOORPLAN Dum & Interiér & Zahrada PRO 15\Textury\Natures Gallery Greige Crackle.jpg
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_history.xml
[2011.05.17 21:15:02 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\CT2475029\feed\http___crackle_com_rss_media_sxsw_featured_rss_structured.xml
[2011.03.13 16:35:45 | 114,376,696 | ---- | M] () -- \Users\lada\Desktop\HRY\Robot Chicken Complete\s01\s01e05_nutcracker_sweet.mkv
[2011.03.13 18:00:29 | 109,466,169 | ---- | M] () -- \Users\lada\Desktop\HRY\Robot Chicken Complete\s02\s02e07_cracked_china.mkv
[2009.04.08 23:06:58 | 000,113,544 | ---- | M] () -- \Users\lada\Desktop\MOBIL\black list\CMI.Technologies.Black.And.White.v1.40.S60v3.SymbianOS9.1.Unsigned.Cracked-CODePDA.sis
< *keygen* /s >
[2008.07.25 23:42:44 | 000,035,328 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe
[2008.03.20 19:47:44 | 000,035,328 | ---- | M] () -- \Documents and Settings\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe
[2008.07.25 23:42:44 | 000,035,328 | ---- | M] () -- \Users\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe
[2008.03.20 19:47:44 | 000,035,328 | ---- | M] () -- \Users\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe
< *serial* /s >
[2011.08.13 18:23:38 | 000,000,052 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Documents and Settings\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Downloads\tot conv\tot conv\Serial.txt
[2011.10.17 20:26:41 | 000,000,120 | ---- | M] () -- \Documents and Settings\lada\Favorites\WAREZ\Serials & keys - unlocks the world.URL
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Serial.txt
[2010.08.20 11:43:02 | 000,242,984 | ---- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore10\boost_serialization-mt.dll
[2010.08.20 11:43:16 | 000,165,160 | ---- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore10\boost_wserialization-mt.dll
[2010.12.09 17:02:54 | 000,009,127 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\rimserial.cat
[2010.12.09 17:02:52 | 000,001,594 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial.inf
[2010.12.09 17:02:52 | 000,027,136 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial.sys
[2010.12.09 17:02:52 | 000,031,744 | ---- | M] () -- \Program Files (x86)\Compiled Driver Disc (Full)\RIM\RimSerial_AMD64.sys
[2011.01.19 15:28:48 | 000,270,336 | ---- | M] () -- \Program Files (x86)\KASTNER software\FORM studio CZ\ManagerISDS.XmlSerializers.dll
[2011.08.30 17:58:34 | 000,413,696 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.dll
[2011.10.12 08:30:13 | 001,186,816 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.ni.dll
[2010.09.28 17:18:06 | 000,775,464 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\SetSerial.exe
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010.04.19 20:46:44 | 000,010,177 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\serialization.cpp
[2010.04.19 20:46:44 | 000,003,267 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\serialization.h
[2010.04.19 20:47:56 | 000,030,276 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.cs
[2010.04.19 20:47:56 | 000,004,259 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.csproj
[2010.04.19 20:47:56 | 000,005,515 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.resx
[2010.04.19 20:47:56 | 000,000,909 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\tabletpc\serialization\cs\Serialization.sln
[2010.04.19 20:48:12 | 000,002,400 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\web\WWSAPI\WcfPublicServiceClient\schemas.microsoft.com.2003.10.Serialization.xsd
[2010.11.05 03:52:08 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2011.08.13 18:23:38 | 000,000,052 | ---- | M] () -- \Users\lada\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Users\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Downloads\tot conv\tot conv\Serial.txt
[2011.10.17 20:26:41 | 000,000,120 | ---- | M] () -- \Users\lada\Favorites\WAREZ\Serials & keys - unlocks the world.URL
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Users\lada\Games\Unreal Tournament 3\Serial.txt
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.12 19:39:22 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\680689b01ddb7fbe11478caf8cb71d3c\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.13 08:17:10 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\76692f411b404f1db0c95d81dd537c37\System.Runtime.Serialization.ni.dll
[2011.10.13 10:29:09 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\1377c29b871c7eb768769b5f4bdbb15d\System.Runtime.Serialization.ni.dll
[2011.10.12 19:41:32 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\b3b42692707c0f555807def0c4acefe3\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.12 08:37:57 | 002,647,040 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\993f89ba22499c379d2a9dd25d13cd94\System.Runtime.Serialization.ni.dll
[2011.10.12 08:38:27 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\bed774dde4b62ed1d2d55c2d1769d600\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.12 08:42:11 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\3a2ab56bb224b871516526753985ff69\System.Xml.Serialization.ni.dll
[2011.10.13 10:48:28 | 000,376,832 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\6cd778cd2c8c61130ff71ee7a685222b\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.13 10:48:06 | 003,412,992 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\f68180d9f4ade9c313f9ad20422eb1c0\System.Runtime.Serialization.ni.dll
[2011.10.13 22:04:44 | 000,010,240 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Serializ#\59e70022e798ce28f9f5b8870c5c8bf2\System.Xml.Serialization.ni.dll
[2011.10.12 08:26:02 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.10.12 08:26:01 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.12 08:26:08 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 03:52:16 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 17:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2009.07.14 17:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2010.11.05 03:52:16 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2010.11.05 03:52:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2011.04.15 14:07:18 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.04.15 14:07:18 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2009.07.14 17:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 17:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2010.11.20 07:21:24 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2009.07.14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2010.11.20 07:22:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2010.11.20 06:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2009.07.14 17:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2010.11.20 06:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2010.11.20 06:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
< *nocd* /s >
< *nodvd* /s >
< *AutoKMS* /s >
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \Documents and Settings\All Users\AutoKMS\AutoKMS.cmd
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \ProgramData\AutoKMS\AutoKMS.cmd
[2010.07.14 21:49:51 | 000,001,586 | ---- | M] () -- \Users\All Users\AutoKMS\AutoKMS.cmd
[2011.08.11 14:17:04 | 000,729,088 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.exe
[2011.08.11 14:17:04 | 000,000,286 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.ini
[2011.10.25 11:00:08 | 000,029,077 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.log
[2011.10.25 11:00:08 | 000,236,760 | ---- | M] () -- \Windows\Prefetch\AUTOKMS.EXE-97B3D7D9.pf
[2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- \Windows\Tasks\AutoKMS.job
[2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- \Windows\Tasks\AutoKMSDaily.job
< *AutoRearm* /s >
< *Office 2010* /s >
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
[2010.07.20 18:56:27 | 000,002,735 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Jazykové předvolby systému Microsoft Office 2010.lnk
[2010.07.20 18:56:23 | 000,002,911 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Nástroje systému Microsoft Office 2010\Microsoft Office 2010 Upload Center.lnk
< *Razor* /s >
< *Loader* /s >
[2010.10.11 08:14:52 | 000,000,003 | ---- | M] () -- \7Loader.TAG
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \Documents and Settings\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \Documents and Settings\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \Documents and Settings\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Documents and Settings\All Users\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.09.07 21:24:25 | 000,000,723 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\img\ajax-loader.gif
[2011.09.07 21:24:25 | 000,000,979 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\js\FMLoader_Obfs.js
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2010.08.16 21:22:58 | 000,057,728 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2010.10.03 18:30:00 | 000,003,043 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HotFile AutoDownloader 1.0\HotFile AutoDownloader 1.0.lnk
[2010.11.26 11:26:11 | 000,000,392 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2010.11.26 11:26:11 | 000,001,184 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2010.11.26 11:26:16 | 000,001,174 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2011.06.20 14:06:06 | 000,009,767 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.09.27 17:44:42 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\modules\ExternalLibraryLoader.jsm
[2011.10.10 16:57:32 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}\modules\ExternalLibraryLoader.jsm
[2011.09.27 14:11:06 | 000,010,144 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\modules\ExternalLibraryLoader.jsm
[2010.08.14 08:31:58 | 000,001,142 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\Music Mp3 Downloader.lnk
[2010.10.03 18:30:00 | 000,003,077 | ---- | M] () -- \Documents and Settings\lada\Desktop\NET\HotFile AutoDownloader 1.0.lnk
[2007.09.23 00:50:16 | 000,068,688 | R--- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Binaries\PhysXLocal\PhysXLoader.dll
[2011.06.20 20:15:14 | 000,001,051 | ---- | M] () -- \Documents and Settings\Public\Desktop\JDownloader.lnk
[2011.02.08 11:20:32 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader.exe
[2011.02.08 11:32:09 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_2.exe
[2011.02.08 11:32:55 | 000,399,512 | ---- | M] () -- \Documents and Settings\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_3.exe
[2010.04.19 09:38:14 | 000,486,400 | ---- | M] () -- \Program Files (x86)\4Media\HD Video Converter 6\vcloader.exe
[2010.04.19 09:42:06 | 000,005,932 | ---- | M] () -- \Program Files (x86)\4Media\HD Video Converter 6\plugins\loader.avsi
[2009.04.05 12:41:34 | 000,267,575 | ---- | M] () -- \Program Files (x86)\Alcohol Soft\Alcohol 120\RmK-FreE_Loader.exe
[2010.10.02 19:42:57 | 000,000,001 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.02.15 08:22:28 | 000,335,872 | ---- | M] () -- \Program Files (x86)\Common Files\Nokia\Service Layer\A\nsl_loader.dll
[2011.04.14 11:35:32 | 000,131,072 | ---- | M] () -- \Program Files (x86)\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2010.03.15 13:20:28 | 000,010,781 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2010.03.15 13:20:34 | 000,003,492 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\widget\langloader.kc
[2010.03.15 13:20:34 | 000,013,453 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\widget\layoutloader.kc
[2010.02.05 00:34:54 | 000,010,775 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2010.02.05 00:34:54 | 000,003,486 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\widget\langloader.kc
[2010.02.05 00:34:54 | 000,013,369 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cox\widget\layoutloader.kc
[2011.08.24 03:13:45 | 000,000,035 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\ComLoader.ini
[2011.08.25 07:13:36 | 000,124,200 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Common\Koan\pyloader.dll
[2011.08.24 03:13:34 | 000,002,830 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Customizations\Generic\Style\Cascade\Media\Standard\SlideBar\ProgressLoader.png
[2011.08.19 12:03:38 | 000,028,126 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PK\subsys\PyImpLoader\PyImpLoader.kc
[2011.08.19 12:03:38 | 000,120,104 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PK\subsys\PyImpLoader\_PyImpLoader.pyd
[2011.08.12 09:26:27 | 000,012,088 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2011.08.12 09:26:28 | 000,002,692 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cinema\Presentation\Common\D3D9Loader.kc
[2011.08.16 12:03:40 | 000,012,022 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Movie\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2011.08.24 03:13:48 | 000,001,731 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\FlvLoader.swf
[2011.08.24 03:13:48 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\KernelCtrl\D3D9Loader.kc
[2011.08.24 03:13:49 | 000,056,487 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\System\KernelCtrl\ImageLoader2.kc
[2011.08.24 03:13:50 | 000,004,045 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Widget\langloader.kc
[2011.08.24 03:13:50 | 000,014,262 | ---- | M] () -- \Program Files (x86)\Cyberlink\PowerDVD11\Widget\layoutloader.kc
[2010.05.10 11:34:50 | 000,026,112 | ---- | M] () -- \Program Files (x86)\Gameforge4D\4Story\TLoader.exe
[2011.01.29 14:25:50 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.01.29 14:25:50 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2011.01.29 14:25:50 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.01.29 14:25:50 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.2\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\icq_profile\preloader.html
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\profile_forms\preloader.html
[2011.01.29 14:26:33 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.2\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011.04.26 22:29:26 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.04.26 22:29:27 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.04.26 22:29:26 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.07.30 07:43:42 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.04.26 22:29:39 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.04.26 22:29:39 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011.10.04 15:20:09 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.10.04 15:20:09 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.10.04 15:20:09 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.6\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.10.04 15:20:21 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.6\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010.09.21 03:24:46 | 000,502,784 | ---- | M] () -- \Program Files (x86)\iJoysoft\MP4 Converter\vcloader.exe
[2010.10.13 06:55:16 | 000,005,932 | ---- | M] () -- \Program Files (x86)\iJoysoft\MP4 Converter\plugins\loader.avsi
[2011.05.25 19:19:52 | 001,013,456 | ---- | M] () -- \Program Files (x86)\IObit\Advanced SystemCare 4\Freeware\ASC_FreeSoftwareDownloader.exe
[2011.02.25 14:32:02 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.exe
[2011.02.25 13:49:26 | 000,743,728 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.jar
[2011.10.16 21:10:52 | 000,323,561 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.log
[2011.03.11 20:31:35 | 000,000,226 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.log.1
[2010.12.15 14:59:32 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderBETA.exe
[2010.12.15 14:59:32 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderD3D.exe
[2011.03.19 10:42:27 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderNIGHTLY.exe
[2010.11.26 11:29:33 | 000,001,010 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\favicons\jdownloader.org.png
[2011.02.16 12:21:10 | 000,007,069 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\UploaderPl.class
[2011.02.25 13:49:46 | 000,032,222 | ---- | M] () -- \Program Files (x86)\JDownloader\licenses\jdownloader.license
[2010.08.05 13:59:02 | 000,000,039 | ---- | M] () -- \Program Files (x86)\MSI Kombustor\kloader4ab.bat
[2010.08.05 16:33:12 | 000,034,304 | ---- | M] () -- \Program Files (x86)\MSI Kombustor\KLoaderWin32.exe
[2010.07.22 09:12:46 | 003,886,832 | ---- | M] () -- \Program Files (x86)\MusicMp3Downloader\MusicMp3Downloader.exe
[2011.07.13 15:44:18 | 000,017,976 | ---- | M] () -- \Program Files (x86)\Nokia\Nokia Ovi Suite\OviSuiteDownloader.dll
[2011.05.09 12:52:16 | 000,002,560 | ---- | M] () -- \Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 04:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2009.11.12 12:38:00 | 000,777,216 | ---- | M] () -- \Program Files (x86)\Shabestar.net\HotFile AutoDownloader\HotFileAutoDownloader.exe
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2011.02.28 12:54:21 | 000,000,889 | ---- | M] () -- \Program Files (x86)\Windows Doctor\backup\2011-03-03-22-51-41\driver-genius-professional-v10-0-0-712-multilingual-cracked-djinn-by-f-e-a-r-of-power-uploaders.rar.lnk.4.16.sbk
[2009.09.25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files (x86)\Windows Sidebar\Shared Gadgets\TuneUpUtilities.gadget\images\loader.gif
[2010.07.25 23:23:02 | 000,000,436 | ---- | M] () -- \Program Files (x86)\WinUtilities\language\English\plugins\Third-party Applications\Star Downloader.pl
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2010.04.19 20:46:32 | 000,002,326 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontCollectionLoader.cpp
[2010.04.19 20:46:32 | 000,001,660 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontCollectionLoader.h
[2010.04.19 20:46:32 | 000,002,780 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontFileLoader.cpp
[2010.04.19 20:46:32 | 000,001,555 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\DirectWrite\CustomFont\ResourceFontFileLoader.h
[2010.04.19 20:46:44 | 000,000,628 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\mediafoundation\topoedit\tedutil\xmldataloader.rgs
[2010.04.19 20:46:56 | 000,002,584 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\multimedia\WMP\media\loader.hta
[2011.03.02 13:39:56 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2010.04.29 15:12:38 | 000,673,160 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Facebook\ZPSPluginLoader.exe
[2010.04.29 15:12:42 | 000,686,984 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 15:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Flickr\ZPSPluginLoader.exe
[2010.11.11 13:07:12 | 000,192,512 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Plugins\Picasa\ZPSPluginLoader.exe
[2010.11.27 22:18:28 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program32\8bfLoader.exe
[2010.11.27 22:18:42 | 000,019,336 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program32\WICLoader.exe
[2010.11.27 22:19:50 | 000,021,896 | ---- | M] () -- \Program Files\Zoner\Photo Studio 13\Program64\WICLoader.exe
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \ProgramData\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.06.20 20:15:14 | 000,000,362 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2011.06.20 20:15:14 | 000,001,151 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2011.06.20 20:15:23 | 000,001,126 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2010.08.14 08:31:58 | 000,000,093 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Buy Music Mp3 Downloader.url
[2010.08.14 08:31:58 | 000,000,099 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader Site.url
[2010.08.14 08:31:58 | 000,001,160 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Music Mp3 Downloader.lnk
[2010.08.14 08:31:58 | 000,000,868 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Music Mp3 Downloader\Uninstall Music Mp3 Downloader.lnk
[2010.09.23 11:12:18 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.07.03 11:21:29 | 000,002,793 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.07.03 11:21:29 | 000,000,319 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\downloader.png
[2011.04.14 14:15:20 | 000,023,454 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\loader-eng.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_en\bonus\downloader.png
[2011.05.03 11:06:44 | 000,068,165 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\downloader.png
[2011.04.14 14:18:10 | 000,022,854 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\loader-rus.gif
[2011.05.04 05:37:52 | 000,018,643 | ---- | M] () -- \Users\All Users\Ticno\promo\ui1_ru\bonus\downloader.png
[2011.09.07 21:24:25 | 000,000,723 | ---- | M] () -- \Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\img\ajax-loader.gif
[2011.09.07 21:24:25 | 000,000,979 | ---- | M] () -- \Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\js\FMLoader_Obfs.js
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2010.08.16 21:22:57 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2010.08.16 21:22:58 | 000,057,728 | ---- | M] () -- \Users\lada\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2010.10.03 18:30:00 | 000,003,043 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HotFile AutoDownloader 1.0\HotFile AutoDownloader 1.0.lnk
[2010.11.26 11:26:11 | 000,000,392 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader Support.lnk
[2010.11.26 11:26:11 | 000,001,184 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\JDownloader.lnk
[2010.11.26 11:26:16 | 000,001,174 | ---- | M] () -- \Users\lada\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader\Uninstall JDownloader.lnk
[2011.06.20 14:06:06 | 000,009,767 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.09.27 17:44:42 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\modules\ExternalLibraryLoader.jsm
[2011.10.10 16:57:32 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb}\modules\ExternalLibraryLoader.jsm
[2011.09.27 14:11:06 | 000,010,144 | ---- | M] () -- \Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\modules\ExternalLibraryLoader.jsm
[2010.08.14 08:31:58 | 000,001,142 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\Music Mp3 Downloader.lnk
[2010.10.03 18:30:00 | 000,003,077 | ---- | M] () -- \Users\lada\Desktop\NET\HotFile AutoDownloader 1.0.lnk
[2007.09.23 00:50:16 | 000,068,688 | R--- | M] () -- \Users\lada\Games\Unreal Tournament 3\Binaries\PhysXLocal\PhysXLoader.dll
[2011.06.20 20:15:14 | 000,001,051 | ---- | M] () -- \Users\Public\Desktop\JDownloader.lnk
[2011.02.08 11:20:32 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader.exe
[2011.02.08 11:32:09 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_2.exe
[2011.02.08 11:32:55 | 000,399,512 | ---- | M] () -- \Users\Public\Downloads\Norton\{NBRT35-B23-4abb-B07C-C084B04B4F12}\NBRT-Retail-Downloader_3.exe
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2011.10.05 12:12:42 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.10.22 13:46:42 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2011.10.05 12:12:42 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.10.22 13:46:42 | 000,009,622 | ---- | M] () -- \Windows\SysWOW64\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:18:33 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_66f39ad995474166\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 08:23:09 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_66e5ca0f95521152\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:04:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_66c2596d956d1920\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:39:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_673e58b0ae93bb84\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:06:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_67770e0aae6a7c68\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:04:21 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:44:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_68ce27a99276afec\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:00:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:40:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_694ff566ab99b7ac\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 07:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2011.04.15 14:07:18 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.04.15 14:07:18 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2011.04.15 14:07:18 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2011.04.15 14:07:18 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2011.04.15 14:07:18 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 07:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:22:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_0ad4ff55dce9d030\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 07:45:50 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_0ac72e8bdcf4a01c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:19:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:50:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_0b1fbd2cf6364a4e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:13:36 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l
Re: Prosím o preventivní kontrolu.Děkuji
< *w7lxe* /s >
< *Legalizator* /s >
< *GenuineXP* /s >
< *Registration* /s >
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2011.02.22 11:52:48 | 000,000,240 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Nero\Nero 10\OnlineServices\1registrationinfo.xml
[2010.10.16 19:40:51 | 000,000,240 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml
[2010.04.06 09:00:52 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2009.09.15 17:08:20 | 000,005,255 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2010.04.06 09:00:52 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogFreeFull.xml
[2009.09.15 17:08:20 | 000,010,651 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseError.xml
[2009.09.15 17:08:20 | 000,006,487 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.04.19 09:40:42 | 000,006,837 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.15 17:08:20 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.15 17:08:20 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2009.09.15 17:08:20 | 000,008,195 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2009.09.15 17:08:20 | 000,008,284 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2009.09.15 17:08:20 | 000,006,793 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2009.09.15 17:08:20 | 000,007,054 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2009.09.15 17:08:20 | 000,006,454 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrialError.xml
[2010.08.18 12:35:24 | 000,005,525 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2010.08.18 12:35:24 | 000,005,265 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2010.10.22 13:54:10 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogB2BFull.xml
[2010.08.18 12:35:24 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.08.18 12:35:24 | 000,005,916 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogFreeFull.xml
[2010.11.23 12:37:18 | 000,010,670 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseError.xml
[2010.10.22 13:54:10 | 000,006,497 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.11.22 11:12:40 | 000,006,848 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2010.10.22 13:54:10 | 000,006,570 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2010.10.22 13:54:10 | 000,006,671 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2010.10.22 13:54:10 | 000,008,214 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2010.10.22 13:54:10 | 000,008,303 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2010.10.22 13:54:10 | 000,006,812 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2010.10.22 13:54:10 | 000,007,073 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2010.10.22 13:54:10 | 000,006,464 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrialError.xml
[2010.10.22 13:54:10 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2010.04.06 09:00:52 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2010.06.01 15:46:04 | 000,005,264 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2011.03.16 15:20:56 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogB2BFull.xml
[2011.03.16 15:20:56 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.04.06 09:00:52 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogFreeFull.xml
[2010.06.01 15:46:04 | 000,010,669 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseError.xml
[2010.06.01 15:46:04 | 000,006,496 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.06.01 15:46:04 | 000,006,846 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.15 17:08:20 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.15 17:08:20 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2010.06.01 15:46:04 | 000,008,213 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2010.06.01 15:46:04 | 000,008,302 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2010.06.01 15:46:04 | 000,006,811 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2010.06.01 15:46:04 | 000,007,072 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2010.06.01 15:46:04 | 000,006,463 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrialError.xml
[2011.03.16 15:20:56 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2009.03.13 13:13:13 | 000,000,538 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Registration.reg
[2010.04.01 16:40:08 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2009.09.14 16:24:18 | 000,005,255 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2011.03.16 15:20:56 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogB2BFull.xml
[2011.03.16 15:20:56 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.04.01 16:40:06 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogFreeFull.xml
[2009.09.09 16:48:24 | 000,010,651 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseError.xml
[2009.09.09 09:15:02 | 000,006,487 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.04.16 10:19:26 | 000,006,837 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.09 15:11:52 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.09 09:04:40 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2009.09.09 08:58:38 | 000,008,195 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2009.09.09 09:03:32 | 000,008,284 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2009.09.09 16:23:06 | 000,006,793 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2009.09.09 16:48:02 | 000,007,054 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2009.09.09 10:02:54 | 000,006,454 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrialError.xml
[2011.03.16 15:20:56 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2010.11.09 00:57:00 | 000,177,464 | ---- | M] () -- \Program Files (x86)\DivX\DivX Control Panel\plugins\DivXControlPanelPlugin_Registration.dll
[2011.08.15 18:20:15 | 000,001,558 | ---- | M] () -- \Program Files (x86)\Java\jre6\lib\servicetag\registration.xml
[2010.09.28 17:17:30 | 000,010,536 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\NOSProductRegistration.Interop.dll
[2010.09.23 11:08:36 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Burning ROM\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Express\OnlineServices\NOSProductRegistration.dll
[2010.10.07 10:31:42 | 000,010,536 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero MediaHub\NOSProductRegistration.Interop.dll
[2010.09.23 11:08:36 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero MediaHub\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero StartSmart\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Vision\OnlineServices\NOSProductRegistration.dll
[2010.04.19 20:44:34 | 000,051,372 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Include\syncregistration.h
[2010.04.19 20:44:34 | 000,002,201 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Include\syncregistrationerrors.h
[2010.04.19 20:47:16 | 000,002,602 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\netds\nap\sampleshvui\Registration.cpp
[2010.04.19 20:47:16 | 000,000,699 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\netds\nap\sampleshvui\Registration.h
[2010.04.19 20:47:40 | 000,004,037 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\mmc3.0\LocalizedRegistrationSample\LocalizedRegistrationSample.csproj
[2010.04.19 20:47:40 | 000,001,544 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\mmc3.0\LocalizedRegistrationSample\LocalizedRegistrationSample.sln
[2010.04.19 20:47:44 | 000,010,830 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\RegistrationTrigger_ExecAction_UserLogon_Example.cpp
[2010.04.19 20:47:44 | 000,000,921 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\TaskSample_ExeOnRegistration.sln
[2010.04.19 20:47:44 | 000,003,313 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\TaskSample_ExeOnRegistration.vcproj
[2010.04.19 20:48:42 | 000,006,646 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\winui\shell\appshellintegration\AutomaticJumpList\FileRegistrations.h
[2010.04.19 20:48:42 | 000,006,658 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\winui\shell\appshellintegration\CustomJumpList\FileRegistrations.h
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2011.02.22 11:52:48 | 000,000,240 | ---- | M] () -- \Users\lada\AppData\Roaming\Nero\Nero 10\OnlineServices\1registrationinfo.xml
[2010.10.16 19:40:51 | 000,000,240 | ---- | M] () -- \Users\lada\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml
[2009.07.14 05:01:01 | 000,008,183 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.cat
[2009.07.13 22:48:32 | 000,001,457 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.mum
[2010.11.20 17:37:08 | 000,008,586 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.cat
[2010.11.20 17:22:56 | 000,001,462 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.mum
[2009.07.14 05:01:01 | 000,008,183 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.cat
[2010.11.20 17:37:08 | 000,008,586 | --S- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.cat
[2009.07.14 04:12:10 | 000,004,509 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-m..yer-dvdregistration_31bf3856ad364e35_6.1.7600.16385_none_e0e4a1875c30d8c6.manifest
[2009.07.14 04:11:54 | 000,001,124 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-shell-registration_31bf3856ad364e35_6.1.7600.16385_none_1da19e3bba8c6d0f.manifest
[2009.07.14 04:12:00 | 000,003,429 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-t..client-registration_31bf3856ad364e35_6.1.7600.16385_none_d786f194796c48b2.manifest
[2009.07.14 04:17:09 | 000,012,512 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-xwizards-registration_31bf3856ad364e35_6.1.7600.16385_none_750dbfac02518b59.manifest
[2009.07.14 03:42:16 | 000,001,124 | ---- | M] () -- \Windows\winsxs\Manifests\wow64_microsoft-windows-shell-registration_31bf3856ad364e35_6.1.7600.16385_none_27f6488deeed2f0a.manifest
[2009.07.14 03:42:19 | 000,002,254 | ---- | M] () -- \Windows\winsxs\Manifests\wow64_microsoft-windows-t..client-registration_31bf3856ad364e35_6.1.7600.16385_none_e1db9be6adcd0aad.manifest
[2009.07.14 03:51:15 | 000,012,510 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-xwizards-registration_31bf3856ad364e35_6.1.7600.16385_none_18ef242849f41a23.manifest
< *minodlogin* /s >
< *enterprise* /s >
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.4500.6201897.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.__deleted__
[2011.06.26 19:42:45 | 000,016,861 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\MODIFIED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2011.06.26 19:42:12 | 000,006,905 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.dll_0xa346822baa7138022571b1084ac06570.1.manifest
[2011.06.26 19:42:12 | 000,000,548 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.Wrapper.dll_0x4ab3b3a3e0a842de850d8d45ea88ace0.2.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper@1.0.0.0.manifest
[2011.06.26 19:42:12 | 000,258,048 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.manifest
[2011.06.26 19:42:12 | 000,113,664 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.Wrapper.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices@2.0.0.0.manifest
[2010.04.19 20:44:58 | 000,040,960 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Lib\System.EnterpriseServices.tlb
[2010.04.19 20:44:56 | 000,033,280 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Lib\x64\System.EnterpriseServices.tlb
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.4500.6201897.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.__deleted__
[2011.06.26 19:42:45 | 000,016,861 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\MODIFIED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2011.06.26 19:42:12 | 000,006,905 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.dll_0xa346822baa7138022571b1084ac06570.1.manifest
[2011.06.26 19:42:12 | 000,000,548 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.Wrapper.dll_0x4ab3b3a3e0a842de850d8d45ea88ace0.2.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper@1.0.0.0.manifest
[2011.06.26 19:42:12 | 000,258,048 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.manifest
[2011.06.26 19:42:12 | 000,113,664 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.Wrapper.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices@2.0.0.0.manifest
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2009.07.14 17:17:15 | 000,032,768 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
[2011.10.12 19:39:45 | 000,628,224 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\dfe859829abd7f108aa5d82382251690\System.EnterpriseServices.ni.dll
[2011.10.12 19:39:45 | 000,280,064 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\dfe859829abd7f108aa5d82382251690\System.EnterpriseServices.Wrapper.dll
[2011.10.12 19:41:29 | 001,081,344 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\4b0fd98f11e1e243efcfb810c170decf\System.EnterpriseServices.ni.dll
[2011.10.12 19:41:29 | 000,446,464 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\4b0fd98f11e1e243efcfb810c170decf\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:38:13 | 000,787,456 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.ni.dll
[2011.10.12 08:38:13 | 000,236,032 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.Wrapper.dll
[2011.10.13 10:48:19 | 001,098,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.EnterpriseSe#\5a86b6067f001cef079bde90f001d54d\System.EnterpriseServices.ni.dll
[2011.10.13 10:48:19 | 000,348,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.EnterpriseSe#\5a86b6067f001cef079bde90f001d54d\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:25:24 | 000,246,128 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2011.10.12 08:25:24 | 000,109,568 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:25:50 | 000,237,424 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2011.10.12 08:25:50 | 000,125,440 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2009.06.10 23:22:39 | 000,011,112 | ---- | M] () -- \Windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
[2009.06.10 23:23:18 | 000,054,144 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
[2009.06.10 23:23:18 | 000,040,960 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.tlb
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
[2010.08.27 20:19:12 | 000,017,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2010.11.05 03:53:33 | 000,032,768 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.EnterpriseServices.resources.dll
[2010.03.18 13:16:28 | 000,246,128 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.dll
[2010.03.18 13:16:28 | 000,045,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.Thunk.dll
[2010.03.18 01:08:48 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.tlb
[2010.03.18 00:51:36 | 000,109,568 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.dll
[2009.06.10 22:40:03 | 000,060,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Thunk.dll
[2009.06.10 22:40:04 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.tlb
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Wrapper.dll
[2010.05.21 20:46:40 | 000,000,428 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\enterprisesec.config.cch
[2010.11.05 03:54:38 | 000,032,768 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.EnterpriseServices.Resources.dll
[2010.03.18 14:27:14 | 000,237,424 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.dll
[2010.03.18 14:27:14 | 000,052,608 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.Thunk.dll
[2010.03.18 05:57:24 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.tlb
[2010.03.18 05:46:16 | 000,125,440 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.Wrapper.dll
[2009.06.10 22:30:54 | 000,053,555 | ---- | M] () -- \Windows\servicing\Editions\EnterpriseEdition.xml
[2009.06.10 22:30:54 | 000,053,555 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-editions-client_31bf3856ad364e35_6.1.7600.16385_none_bc037fbe81d7b074\EnterpriseEdition.xml
[2009.07.14 17:17:19 | 000,032,768 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.EnterpriseServices.Resources.dll
[2010.11.05 03:54:38 | 000,032,768 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.EnterpriseServices.Resources.dll
[2009.06.10 22:40:03 | 000,060,272 | ---- | M] () -- \Windows\winsxs\amd64_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7600.16385_none_df3a1ffa5faa4434\System.EnterpriseServices.Thunk.dll
[2009.06.10 22:40:04 | 000,033,280 | ---- | M] () -- \Windows\winsxs\amd64_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_a8a4035909e14dff\System.EnterpriseServices.tlb
[2009.06.10 22:40:03 | 000,245,760 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311\System.EnterpriseServices.dll
[2009.06.10 22:40:04 | 000,133,120 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7\System.EnterpriseServices.dll
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7\System.EnterpriseServices.Wrapper.dll
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprisee_8ad9950b3bc6d146.cdf-ms
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprisen_8ad9951d3bc6d0f5.cdf-ms
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprise_34b80fcebf5da8dd.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprisee_6454fe5b7f286ac0.cdf-ms
[2009.07.14 17:17:51 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprisen_6454fe6d7f286a6f.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprise_51804bddd3e58df7.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprisee_4619b402aead8ce7.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprisen_4619b2beaead8fc0.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprise_eb142c29fb79fe72.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprisee_923f20bd33b5fe7a.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprisen_923f20cf33b5fe29.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprise_839d46fb758e5263.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprisee_669b758e2896b08c.cdf-ms
[2009.07.14 17:17:51 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprisen_669b75a02896b03b.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprise_5e3878944e5422f1.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprisee_52d1e0b8291c21e1.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprisen_52d1df74291c24ba.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprise_3b3184dade44f0c6.cdf-ms
[2009.07.14 04:10:51 | 000,001,074 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..-default-enterprise_31bf3856ad364e35_6.1.7600.16385_none_a296e1c70bc201b2.manifest
[2009.07.14 04:10:51 | 000,001,080 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..default-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_397ea1a6063bfe6f.manifest
[2009.07.14 04:10:51 | 000,001,078 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..default-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_3d7c624403ab272e.manifest
[2009.07.14 04:11:04 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-eval-enterprise_31bf3856ad364e35_6.1.7600.16385_none_21274d7b79b6d0af.manifest
[2009.07.14 04:11:42 | 000,001,064 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-oem-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_f2c5ab32ecf9f2f9.manifest
[2009.07.14 04:11:42 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-oem-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_f6c36bd0ea691bb8.manifest
[2009.07.14 04:11:04 | 000,001,068 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..se-eval-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_3e65560ca3c6db98.manifest
[2009.07.14 04:11:04 | 000,001,066 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..se-eval-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_3e0406c0a40fd711.manifest
[2009.07.14 04:11:42 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-license-oem-enterprise_31bf3856ad364e35_6.1.7600.16385_none_e2e08abc9bcbdef2.manifest
[2009.07.14 04:21:40 | 000,002,092 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_a8a4035909e14dff.manifest
[2009.07.14 04:11:58 | 000,058,227 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices.tlb_31bf3856ad364e35_6.1.7600.16385_none_11fa12a35622b98c.manifest
[2009.07.14 04:23:14 | 000,028,020 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311.manifest
[2010.11.20 07:19:28 | 000,028,020 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7.manifest
[2009.07.14 17:16:05 | 000,001,546 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.enterpriseservices.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_e35e6073933ef2a3.manifest
[2009.07.14 03:44:16 | 000,001,070 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..-default-enterprise_31bf3856ad364e35_6.1.7600.16385_none_467846435364907c.manifest
[2009.07.14 03:44:16 | 000,001,076 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..default-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_dd6006224dde8d39.manifest
[2009.07.14 03:44:16 | 000,001,074 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..default-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_e15dc6c04b4db5f8.manifest
[2009.07.14 03:44:40 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-eval-enterprise_31bf3856ad364e35_6.1.7600.16385_none_c508b1f7c1595f79.manifest
[2009.07.14 03:45:46 | 000,001,060 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-oem-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_96a70faf349c81c3.manifest
[2009.07.14 03:45:46 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-oem-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_9aa4d04d320baa82.manifest
[2009.07.14 03:44:40 | 000,001,064 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..se-eval-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_e246ba88eb696a62.manifest
[2009.07.14 03:44:40 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..se-eval-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_e1e56b3cebb265db.manifest
[2009.07.14 03:45:46 | 000,001,054 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-license-oem-enterprise_31bf3856ad364e35_6.1.7600.16385_none_86c1ef38e36e6dbc.manifest
[2009.07.14 03:58:04 | 000,002,012 | ---- | M] () -- \Windows\winsxs\Manifests\x86_netfx-sbs_sys_enterprisesvc_dll_31bf3856ad364e35_6.1.7600.16385_none_60ffafae87253a03.manifest
[2009.07.14 03:54:27 | 000,002,088 | ---- | M] () -- \Windows\winsxs\Manifests\x86_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_f0513a301e5d7705.manifest
[2009.07.14 03:46:16 | 000,058,223 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices.tlb_31bf3856ad364e35_6.1.7600.16385_none_b5db771f9dc54856.manifest
[2009.07.14 03:54:56 | 000,028,014 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17.manifest
[2010.11.20 06:08:14 | 000,028,014 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd.manifest
[2009.07.14 17:17:15 | 000,032,768 | ---- | M] () -- \Windows\winsxs\msil_system.enterpriseservices.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_e35e6073933ef2a3\System.EnterpriseServices.resources.dll
[2009.07.14 17:17:21 | 000,032,768 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.EnterpriseServices.resources.dll
[2010.11.05 03:53:33 | 000,032,768 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.EnterpriseServices.resources.dll
[2009.06.10 23:23:18 | 000,054,144 | ---- | M] () -- \Windows\winsxs\x86_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7600.16385_none_26e756d174266d3a\System.EnterpriseServices.Thunk.dll
[2009.06.10 23:22:39 | 000,011,112 | ---- | M] () -- \Windows\winsxs\x86_netfx-sbs_sys_enterprisesvc_dll_31bf3856ad364e35_6.1.7600.16385_none_60ffafae87253a03\sbs_system.enterpriseservices.dll
[2009.06.10 23:23:18 | 000,040,960 | ---- | M] () -- \Windows\winsxs\x86_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_f0513a301e5d7705\System.EnterpriseServices.tlb
[2009.06.10 23:23:18 | 000,258,048 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17\System.EnterpriseServices.dll
[2009.07.13 22:46:36 | 000,113,664 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd\System.EnterpriseServices.dll
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd\System.EnterpriseServices.Wrapper.dll
< serial.txt /s >
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Documents and Settings\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Downloads\tot conv\tot conv\Serial.txt
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Users\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Downloads\tot conv\tot conv\Serial.txt
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Users\lada\Games\Unreal Tournament 3\Serial.txt
< %APPDATA%\*.* >
[2010.08.18 20:17:24 | 007,846,904 | ---- | M] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2011.06.26 20:02:33 | 000,071,680 | ---- | M] () -- C:\Users\lada\AppData\Roaming\chrtmp
[2010.09.28 12:48:59 | 000,000,157 | ---- | M] () -- C:\Users\lada\AppData\Roaming\default.rss
[2010.06.28 21:46:22 | 000,000,000 | ---- | M] () -- C:\Users\lada\AppData\Roaming\downloads.m3u
[2010.08.15 20:24:28 | 012,017,880 | ---- | M] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,099,384 | ---- | M] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.06.03 20:10:22 | 000,007,859 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.cat
[2010.06.03 20:10:22 | 000,001,167 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.inf
[2010.06.03 20:10:56 | 000,000,034 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.log
[2010.06.03 20:10:22 | 000,082,816 | ---- | M] (VSO Software) -- C:\Users\lada\AppData\Roaming\pcouffin.sys
[2010.12.28 13:07:14 | 000,000,990 | -HS- | M] () -- C:\Users\lada\AppData\Roaming\systemfl.$dk
[2010.12.21 19:12:44 | 000,001,057 | ---- | M] () -- C:\Users\lada\AppData\Roaming\vso_ts_preview.xml
[2010.05.04 20:58:16 | 006,652,432 | ---- | M] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
< %APPDATA%\*.exe /s >
[2010.08.18 20:17:24 | 007,846,904 | ---- | M] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2010.08.15 20:24:28 | 012,017,880 | ---- | M] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,099,384 | ---- | M] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.05.04 20:58:16 | 006,652,432 | ---- | M] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
[2009.08.11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\ac3config.exe
[2009.08.11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\spdif_test.exe
[2010.03.22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\unins000.exe
[2010.02.23 17:01:52 | 001,185,871 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\FFDShow\unins000.exe
[2010.08.14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\dsmux.exe
[2010.08.14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\gdsmux.exe
[2010.08.14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\mkv2vfr.exe
[2010.09.30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\uninstall.exe
[2011.01.06 11:14:46 | 000,894,792 | ---- | M] (Acronis) -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953\setupapp.exe
[2011.08.08 08:41:08 | 000,408,896 | ---- | M] (Hewlett-Packard Company ) -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\fisb13lx.dso\sp39949.exe
[2009.10.26 14:09:22 | 000,372,736 | ---- | M] (Macrovision Corporation) -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\hv1wgquj.gce\eM112W7\e-Messenger 112 Win 7 driver\setup.exe
[2011.08.11 16:50:21 | 034,442,296 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\ie3qckfn.nug\Nokia_PC_Suite_eng_us_web.exe
[2010.10.15 13:23:28 | 022,451,712 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FORMasistent.exe
[2011.01.20 14:39:50 | 025,775,616 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FORMstudio.exe
[2010.10.15 09:46:00 | 003,521,024 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FSUpdate.exe
[2011.01.20 12:04:38 | 001,188,437 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\unins000.exe
[2009.11.06 12:17:52 | 003,965,440 | ---- | M] (Kastner software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\Upgrade.exe
[2010.05.04 15:59:54 | 024,757,760 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FORMasistent.exe
[2010.05.04 15:56:00 | 033,097,216 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FORMstudio.exe
[2009.12.16 14:06:30 | 003,479,040 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FSUpdate.exe
[2010.05.15 12:58:00 | 001,188,437 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\unins000.exe
[2009.11.06 12:17:52 | 003,965,440 | ---- | M] (Kastner software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\Upgrade.exe
[2011.10.21 15:16:23 | 000,005,430 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_532EEF936FFAE0ABE2522D.exe
[2011.10.21 15:16:23 | 000,005,430 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_A290953C7595C4E6A1FDBA.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_1E02B3D8732010A792DC8B.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_21F3885A18D238E15AAE81.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_3B5A55730F6304D4268D6F.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_415493353D745EEA216D94.exe
[2010.09.21 07:52:58 | 000,009,662 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_4D8AF1E1FDD6496A9CE99A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_57B371F94C0C0A4DB7DF65.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_6FEFF9B68218417F98F549.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_806048DC66200FE6D24FF3.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_85972F4A73DF7EADFBAFC2.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_934312A2105DE40686D86A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_A753214149FB4F8721C1CB.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_A7A1F24988209FFD6FF84A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_C7EFEC170C2E3BE8B9D183.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_CF15DB293FB3ABD44856FB.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_D707CE1C009F1381803C2C.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_FD8B6BA922FF5C34868F02.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_FF1A5B1631F358DBDD94AE.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\ARPPRODUCTICON.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\cit200.exe_9CDEC547A50547CA991CDB65F3C0CB87.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\NewShortcut1_9CDEC547A50547CA991CDB65F3C0CB87_3.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\NewShortcut2_9CDEC547A50547CA991CDB65F3C0CB87.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_7821278E3179A951288E4F.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_BBA79F13A1F0618ED6C3E1.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_C9C2C62A5E0B9A4C5E1A62.exe
[2011.02.12 11:59:00 | 032,022,784 | ---- | M] (COMPELSON Laboratories ) -- C:\Users\lada\AppData\Roaming\MOBILedit\MOBILEditUpdate.exe
[2011.05.26 14:00:28 | 003,486,088 | ---- | M] (Ask) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[2011.06.27 10:47:35 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\pnup0.exe
[2011.05.25 22:36:40 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\rnupgagent.exe
[2011.06.27 10:48:04 | 025,824,400 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_data\RealPlayer.exe
[2011.06.27 10:47:23 | 000,675,088 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_exe\RealPlayer.exe
[2009.09.23 14:55:40 | 000,116,008 | ---- | M] (U3 LLC) -- C:\Users\lada\AppData\Roaming\U3\temp\cleanup.exe
[2009.09.23 14:55:56 | 003,413,288 | -H-- | M] (SanDisk Corporation) -- C:\Users\lada\AppData\Roaming\U3\temp\Launchpad Removal.exe
[2011.03.02 14:51:22 | 001,373,480 | R--- | M] (U3 LLC) -- C:\Users\lada\AppData\Roaming\U3\temp\U3BkUpDir\LaunchU3.exe
< %SYSTEMDRIVE%\*.exe >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSucces >
< sTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB8DBCBE-2EB8-4080-A6D0-CFA3B846EFD4}\\: IMFRatelessTimeSource
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{b2f5a901-4080-11d1-a3ac-00c04fb950dc}\\: IADsTimestamp
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Record\{C04F6676-A27D-342D-953F-A3D24639E38E}\14.0.0.0\\Class: Microsoft.Office.Interop.Excel.XlHighlightChangesTime
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{AB8DBCBE-2EB8-4080-A6D0-CFA3B846EFD4}\\: IMFRatelessTimeSource
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{b2f5a901-4080-11d1-a3ac-00c04fb950dc}\\: IADsTimestamp
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS\\JobNoProgressTimeout: 1209600
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Canon MP210 series Printer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Odeslat do aplikace OneNote 2010\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Software602 Print2PDF\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Search\Gathering Manager\\FilterHostProcessTimeout: 120000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Canon MP210 series Printer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Fax\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Microsoft XPS Document Writer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Odeslat do aplikace OneNote 2010\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Software602 Print2PDF\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Power\\HiberCompressTime: 5176
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{95C9C385-095A-4B3E-B6A4-A2396773D3D0}\\LeaseTerminatesTime: 1319557416
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar\Settings\General\\LastUpdateGamesTime: 1296304016
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
PENDINGFILERENAMEOPERATIONS REG_MULTI_SZ \??\C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\downloads.sqlite\0\??\C:\Users\lada\AppData\Local\Temp\~nsu.tmp\Au_.exe\0\??\C:\Users\lada\AppData\Local\Temp\~nsu.tmp\0\??\C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll\0\??\C:\Program Files (x86)\Conduit\Community Alerts\0\??\C:\Program Files (x86)\Conduit\0\??\C:\Users\lada\AppData\LocalLow\Conduit
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.10.25 15:13:58 | 000,000,512 | ---- | M] () MD5=257F469A4905D2F8F8C56FD0411F8BE9 -- C:\PhysicalMBR.bin
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 6104 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 157 bytes -> C:\ProgramData\Temp:1677AB3F
@Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:D1B5B4F1
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:CC2DDA0D
< End of report >
< *Legalizator* /s >
< *GenuineXP* /s >
< *Registration* /s >
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \Documents and Settings\All Users\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2011.02.22 11:52:48 | 000,000,240 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Nero\Nero 10\OnlineServices\1registrationinfo.xml
[2010.10.16 19:40:51 | 000,000,240 | ---- | M] () -- \Documents and Settings\lada\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml
[2010.04.06 09:00:52 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2009.09.15 17:08:20 | 000,005,255 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2010.04.06 09:00:52 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogFreeFull.xml
[2009.09.15 17:08:20 | 000,010,651 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseError.xml
[2009.09.15 17:08:20 | 000,006,487 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.04.19 09:40:42 | 000,006,837 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.15 17:08:20 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.15 17:08:20 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2009.09.15 17:08:20 | 000,008,195 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2009.09.15 17:08:20 | 000,008,284 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2009.09.15 17:08:20 | 000,006,793 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2009.09.15 17:08:20 | 000,007,054 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2009.09.15 17:08:20 | 000,006,454 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo Burning Studio 10\skins\ash_inet\layout\registrationDialogTrialError.xml
[2010.08.18 12:35:24 | 000,005,525 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2010.08.18 12:35:24 | 000,005,265 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2010.10.22 13:54:10 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogB2BFull.xml
[2010.08.18 12:35:24 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.08.18 12:35:24 | 000,005,916 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogFreeFull.xml
[2010.11.23 12:37:18 | 000,010,670 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseError.xml
[2010.10.22 13:54:10 | 000,006,497 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.11.22 11:12:40 | 000,006,848 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2010.10.22 13:54:10 | 000,006,570 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2010.10.22 13:54:10 | 000,006,671 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2010.10.22 13:54:10 | 000,008,214 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2010.10.22 13:54:10 | 000,008,303 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2010.10.22 13:54:10 | 000,006,812 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2010.10.22 13:54:10 | 000,007,073 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2010.10.22 13:54:10 | 000,006,464 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrialError.xml
[2010.10.22 13:54:10 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2010.04.06 09:00:52 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2010.06.01 15:46:04 | 000,005,264 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2011.03.16 15:20:56 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogB2BFull.xml
[2011.03.16 15:20:56 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.04.06 09:00:52 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogFreeFull.xml
[2010.06.01 15:46:04 | 000,010,669 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseError.xml
[2010.06.01 15:46:04 | 000,006,496 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.06.01 15:46:04 | 000,006,846 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.15 17:08:20 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.15 17:08:20 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2010.06.01 15:46:04 | 000,008,213 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2010.06.01 15:46:04 | 000,008,302 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2010.06.01 15:46:04 | 000,006,811 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2010.06.01 15:46:04 | 000,007,072 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2010.06.01 15:46:04 | 000,006,463 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrialError.xml
[2011.03.16 15:20:56 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2009.03.13 13:13:13 | 000,000,538 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Registration.reg
[2010.04.01 16:40:08 | 000,005,524 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialog10PlusVNRFull.xml
[2009.09.14 16:24:18 | 000,005,255 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialog10PlusXFull.xml
[2011.03.16 15:20:56 | 000,005,632 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogB2BFull.xml
[2011.03.16 15:20:56 | 000,004,826 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogB2BFullActivated.xml
[2010.04.01 16:40:06 | 000,005,915 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogFreeFull.xml
[2009.09.09 16:48:24 | 000,010,651 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseError.xml
[2009.09.09 09:15:02 | 000,006,487 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseInvalid.xml
[2010.04.16 10:19:26 | 000,006,837 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogLicenseInvalidNoUpdate.xml
[2009.09.09 15:11:52 | 000,006,473 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusVNR.xml
[2009.09.09 09:04:40 | 000,006,576 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusVNRExpired.xml
[2009.09.09 08:58:38 | 000,008,195 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusX.xml
[2009.09.09 09:03:32 | 000,008,284 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExpired.xml
[2009.09.09 16:23:06 | 000,006,793 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtended.xml
[2009.09.09 16:48:02 | 000,007,054 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrial10PlusXExtendedExpired.xml
[2009.09.09 10:02:54 | 000,006,454 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrialError.xml
[2011.03.16 15:20:56 | 000,006,490 | ---- | M] () -- \Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\Skins\ash_inet\layout\registrationDialogTrialErrorVNR.xml
[2010.11.09 00:57:00 | 000,177,464 | ---- | M] () -- \Program Files (x86)\DivX\DivX Control Panel\plugins\DivXControlPanelPlugin_Registration.dll
[2011.08.15 18:20:15 | 000,001,558 | ---- | M] () -- \Program Files (x86)\Java\jre6\lib\servicetag\registration.xml
[2010.09.28 17:17:30 | 000,010,536 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\NOSProductRegistration.Interop.dll
[2010.09.23 11:08:36 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero BackItUp\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Burning ROM\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Express\OnlineServices\NOSProductRegistration.dll
[2010.10.07 10:31:42 | 000,010,536 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero MediaHub\NOSProductRegistration.Interop.dll
[2010.09.23 11:08:36 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero MediaHub\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero StartSmart\OnlineServices\NOSProductRegistration.dll
[2010.09.10 14:47:30 | 003,736,872 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Nero Vision\OnlineServices\NOSProductRegistration.dll
[2010.04.19 20:44:34 | 000,051,372 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Include\syncregistration.h
[2010.04.19 20:44:34 | 000,002,201 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Include\syncregistrationerrors.h
[2010.04.19 20:47:16 | 000,002,602 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\netds\nap\sampleshvui\Registration.cpp
[2010.04.19 20:47:16 | 000,000,699 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\netds\nap\sampleshvui\Registration.h
[2010.04.19 20:47:40 | 000,004,037 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\mmc3.0\LocalizedRegistrationSample\LocalizedRegistrationSample.csproj
[2010.04.19 20:47:40 | 000,001,544 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\mmc3.0\LocalizedRegistrationSample\LocalizedRegistrationSample.sln
[2010.04.19 20:47:44 | 000,010,830 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\RegistrationTrigger_ExecAction_UserLogon_Example.cpp
[2010.04.19 20:47:44 | 000,000,921 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\TaskSample_ExeOnRegistration.sln
[2010.04.19 20:47:44 | 000,003,313 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\sysmgmt\tasksched\exeonregistration\TaskSample_ExeOnRegistration.vcproj
[2010.04.19 20:48:42 | 000,006,646 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\winui\shell\appshellintegration\AutomaticJumpList\FileRegistrations.h
[2010.04.19 20:48:42 | 000,006,658 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Samples\winui\shell\appshellintegration\CustomJumpList\FileRegistrations.h
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2010.10.12 19:34:54 | 000,001,863 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk
[2011.02.22 11:52:48 | 000,000,240 | ---- | M] () -- \Users\lada\AppData\Roaming\Nero\Nero 10\OnlineServices\1registrationinfo.xml
[2010.10.16 19:40:51 | 000,000,240 | ---- | M] () -- \Users\lada\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml
[2009.07.14 05:01:01 | 000,008,183 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.cat
[2009.07.13 22:48:32 | 000,001,457 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.mum
[2010.11.20 17:37:08 | 000,008,586 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.cat
[2010.11.20 17:22:56 | 000,001,462 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.mum
[2009.07.14 05:01:01 | 000,008,183 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7600.16385.cat
[2010.11.20 17:37:08 | 000,008,586 | --S- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-DVDRegistration-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.cat
[2009.07.14 04:12:10 | 000,004,509 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-m..yer-dvdregistration_31bf3856ad364e35_6.1.7600.16385_none_e0e4a1875c30d8c6.manifest
[2009.07.14 04:11:54 | 000,001,124 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-shell-registration_31bf3856ad364e35_6.1.7600.16385_none_1da19e3bba8c6d0f.manifest
[2009.07.14 04:12:00 | 000,003,429 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-t..client-registration_31bf3856ad364e35_6.1.7600.16385_none_d786f194796c48b2.manifest
[2009.07.14 04:17:09 | 000,012,512 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-xwizards-registration_31bf3856ad364e35_6.1.7600.16385_none_750dbfac02518b59.manifest
[2009.07.14 03:42:16 | 000,001,124 | ---- | M] () -- \Windows\winsxs\Manifests\wow64_microsoft-windows-shell-registration_31bf3856ad364e35_6.1.7600.16385_none_27f6488deeed2f0a.manifest
[2009.07.14 03:42:19 | 000,002,254 | ---- | M] () -- \Windows\winsxs\Manifests\wow64_microsoft-windows-t..client-registration_31bf3856ad364e35_6.1.7600.16385_none_e1db9be6adcd0aad.manifest
[2009.07.14 03:51:15 | 000,012,510 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-xwizards-registration_31bf3856ad364e35_6.1.7600.16385_none_18ef242849f41a23.manifest
< *minodlogin* /s >
< *enterprise* /s >
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.4500.6201897.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.__deleted__
[2011.06.26 19:42:45 | 000,016,861 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\MODIFIED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2011.06.26 19:42:12 | 000,006,905 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.dll_0xa346822baa7138022571b1084ac06570.1.manifest
[2011.06.26 19:42:12 | 000,000,548 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.Wrapper.dll_0x4ab3b3a3e0a842de850d8d45ea88ace0.2.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper@1.0.0.0.manifest
[2011.06.26 19:42:12 | 000,258,048 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.manifest
[2011.06.26 19:42:12 | 000,113,664 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.Wrapper.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Documents and Settings\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices@2.0.0.0.manifest
[2010.04.19 20:44:58 | 000,040,960 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Lib\System.EnterpriseServices.tlb
[2010.04.19 20:44:56 | 000,033,280 | ---- | M] () -- \Program Files\Microsoft SDKs\Windows\v7.1\Lib\x64\System.EnterpriseServices.tlb
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.4500.6201897.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new.__deleted__
[2011.06.26 19:42:45 | 000,000,000 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\DELETED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.__deleted__
[2011.06.26 19:42:45 | 000,016,861 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\MODIFIED\@WINDIR@\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2011.06.26 19:42:12 | 000,006,905 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.dll_0xa346822baa7138022571b1084ac06570.1.manifest
[2011.06.26 19:42:12 | 000,000,548 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\Manifests\System.EnterpriseServices.Wrapper.dll_0x4ab3b3a3e0a842de850d8d45ea88ace0.2.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper.manifest
[2011.06.26 19:42:12 | 000,000,523 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices.Wrapper@1.0.0.0\System.EnterpriseServices.Wrapper@1.0.0.0.manifest
[2011.06.26 19:42:12 | 000,258,048 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.manifest
[2011.06.26 19:42:12 | 000,113,664 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices.Wrapper.dll
[2011.06.26 19:42:12 | 000,006,879 | ---- | M] () -- \Users\lada\AppData\Local\Xenocode\Sandbox\Re-Enable v2\2.0.1.0\2010.03.29T16.08\Virtual\SXS\System.EnterpriseServices@2.0.0.0\System.EnterpriseServices@2.0.0.0.manifest
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2009.07.14 17:17:15 | 000,032,768 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
[2011.10.12 19:39:45 | 000,628,224 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\dfe859829abd7f108aa5d82382251690\System.EnterpriseServices.ni.dll
[2011.10.12 19:39:45 | 000,280,064 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\dfe859829abd7f108aa5d82382251690\System.EnterpriseServices.Wrapper.dll
[2011.10.12 19:41:29 | 001,081,344 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\4b0fd98f11e1e243efcfb810c170decf\System.EnterpriseServices.ni.dll
[2011.10.12 19:41:29 | 000,446,464 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\4b0fd98f11e1e243efcfb810c170decf\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:38:13 | 000,787,456 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.ni.dll
[2011.10.12 08:38:13 | 000,236,032 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.Wrapper.dll
[2011.10.13 10:48:19 | 001,098,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.EnterpriseSe#\5a86b6067f001cef079bde90f001d54d\System.EnterpriseServices.ni.dll
[2011.10.13 10:48:19 | 000,348,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.EnterpriseSe#\5a86b6067f001cef079bde90f001d54d\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:25:24 | 000,246,128 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2011.10.12 08:25:24 | 000,109,568 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2011.10.12 08:25:50 | 000,237,424 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
[2011.10.12 08:25:50 | 000,125,440 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
[2009.06.10 23:22:39 | 000,011,112 | ---- | M] () -- \Windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
[2009.06.10 23:23:18 | 000,054,144 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
[2009.06.10 23:23:18 | 000,040,960 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.tlb
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
[2010.08.27 20:19:12 | 000,017,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
[2010.11.05 03:53:33 | 000,032,768 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.EnterpriseServices.resources.dll
[2010.03.18 13:16:28 | 000,246,128 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.dll
[2010.03.18 13:16:28 | 000,045,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.Thunk.dll
[2010.03.18 01:08:48 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.tlb
[2010.03.18 00:51:36 | 000,109,568 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.dll
[2009.06.10 22:40:03 | 000,060,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Thunk.dll
[2009.06.10 22:40:04 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.tlb
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Wrapper.dll
[2010.05.21 20:46:40 | 000,000,428 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\CONFIG\enterprisesec.config.cch
[2010.11.05 03:54:38 | 000,032,768 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.EnterpriseServices.Resources.dll
[2010.03.18 14:27:14 | 000,237,424 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.dll
[2010.03.18 14:27:14 | 000,052,608 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.Thunk.dll
[2010.03.18 05:57:24 | 000,033,280 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.tlb
[2010.03.18 05:46:16 | 000,125,440 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.EnterpriseServices.Wrapper.dll
[2009.06.10 22:30:54 | 000,053,555 | ---- | M] () -- \Windows\servicing\Editions\EnterpriseEdition.xml
[2009.06.10 22:30:54 | 000,053,555 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-editions-client_31bf3856ad364e35_6.1.7600.16385_none_bc037fbe81d7b074\EnterpriseEdition.xml
[2009.07.14 17:17:19 | 000,032,768 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.EnterpriseServices.Resources.dll
[2010.11.05 03:54:38 | 000,032,768 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.EnterpriseServices.Resources.dll
[2009.06.10 22:40:03 | 000,060,272 | ---- | M] () -- \Windows\winsxs\amd64_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7600.16385_none_df3a1ffa5faa4434\System.EnterpriseServices.Thunk.dll
[2009.06.10 22:40:04 | 000,033,280 | ---- | M] () -- \Windows\winsxs\amd64_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_a8a4035909e14dff\System.EnterpriseServices.tlb
[2009.06.10 22:40:03 | 000,245,760 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311\System.EnterpriseServices.dll
[2009.06.10 22:40:04 | 000,133,120 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:57:00 | 000,245,760 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7\System.EnterpriseServices.dll
[2010.11.05 03:57:02 | 000,133,120 | ---- | M] () -- \Windows\winsxs\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7\System.EnterpriseServices.Wrapper.dll
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprisee_8ad9950b3bc6d146.cdf-ms
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprisen_8ad9951d3bc6d0f5.cdf-ms
[2011.03.01 20:20:45 | 000,000,684 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_default_enterprise_34b80fcebf5da8dd.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprisee_6454fe5b7f286ac0.cdf-ms
[2009.07.14 17:17:51 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprisen_6454fe6d7f286a6f.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_eval_enterprise_51804bddd3e58df7.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprisee_4619b402aead8ce7.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprisen_4619b2beaead8fc0.cdf-ms
[2011.03.01 20:20:45 | 000,000,676 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_system32_cs-cz_licenses_oem_enterprise_eb142c29fb79fe72.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprisee_923f20bd33b5fe7a.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprisen_923f20cf33b5fe29.cdf-ms
[2011.03.01 20:20:45 | 000,000,680 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_default_enterprise_839d46fb758e5263.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprisee_669b758e2896b08c.cdf-ms
[2009.07.14 17:17:51 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprisen_669b75a02896b03b.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_eval_enterprise_5e3878944e5422f1.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprisee_52d1e0b8291c21e1.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprisen_52d1df74291c24ba.cdf-ms
[2011.03.01 20:20:45 | 000,000,672 | ---- | M] () -- \Windows\winsxs\FileMaps\$$_syswow64_cs-cz_licenses_oem_enterprise_3b3184dade44f0c6.cdf-ms
[2009.07.14 04:10:51 | 000,001,074 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..-default-enterprise_31bf3856ad364e35_6.1.7600.16385_none_a296e1c70bc201b2.manifest
[2009.07.14 04:10:51 | 000,001,080 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..default-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_397ea1a6063bfe6f.manifest
[2009.07.14 04:10:51 | 000,001,078 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..default-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_3d7c624403ab272e.manifest
[2009.07.14 04:11:04 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-eval-enterprise_31bf3856ad364e35_6.1.7600.16385_none_21274d7b79b6d0af.manifest
[2009.07.14 04:11:42 | 000,001,064 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-oem-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_f2c5ab32ecf9f2f9.manifest
[2009.07.14 04:11:42 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..nse-oem-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_f6c36bd0ea691bb8.manifest
[2009.07.14 04:11:04 | 000,001,068 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..se-eval-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_3e65560ca3c6db98.manifest
[2009.07.14 04:11:04 | 000,001,066 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-l..se-eval-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_3e0406c0a40fd711.manifest
[2009.07.14 04:11:42 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-license-oem-enterprise_31bf3856ad364e35_6.1.7600.16385_none_e2e08abc9bcbdef2.manifest
[2009.07.14 04:21:40 | 000,002,092 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_a8a4035909e14dff.manifest
[2009.07.14 04:11:58 | 000,058,227 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices.tlb_31bf3856ad364e35_6.1.7600.16385_none_11fa12a35622b98c.manifest
[2009.07.14 04:23:14 | 000,028,020 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_6280b6b155e77311.manifest
[2010.11.20 07:19:28 | 000,028,020 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_6255c435563eb9c7.manifest
[2009.07.14 17:16:05 | 000,001,546 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.enterpriseservices.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_e35e6073933ef2a3.manifest
[2009.07.14 03:44:16 | 000,001,070 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..-default-enterprise_31bf3856ad364e35_6.1.7600.16385_none_467846435364907c.manifest
[2009.07.14 03:44:16 | 000,001,076 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..default-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_dd6006224dde8d39.manifest
[2009.07.14 03:44:16 | 000,001,074 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..default-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_e15dc6c04b4db5f8.manifest
[2009.07.14 03:44:40 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-eval-enterprise_31bf3856ad364e35_6.1.7600.16385_none_c508b1f7c1595f79.manifest
[2009.07.14 03:45:46 | 000,001,060 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-oem-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_96a70faf349c81c3.manifest
[2009.07.14 03:45:46 | 000,001,058 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..nse-oem-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_9aa4d04d320baa82.manifest
[2009.07.14 03:44:40 | 000,001,064 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..se-eval-enterprisee_31bf3856ad364e35_6.1.7600.16385_none_e246ba88eb696a62.manifest
[2009.07.14 03:44:40 | 000,001,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-l..se-eval-enterprisen_31bf3856ad364e35_6.1.7600.16385_none_e1e56b3cebb265db.manifest
[2009.07.14 03:45:46 | 000,001,054 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-license-oem-enterprise_31bf3856ad364e35_6.1.7600.16385_none_86c1ef38e36e6dbc.manifest
[2009.07.14 03:58:04 | 000,002,012 | ---- | M] () -- \Windows\winsxs\Manifests\x86_netfx-sbs_sys_enterprisesvc_dll_31bf3856ad364e35_6.1.7600.16385_none_60ffafae87253a03.manifest
[2009.07.14 03:54:27 | 000,002,088 | ---- | M] () -- \Windows\winsxs\Manifests\x86_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_f0513a301e5d7705.manifest
[2009.07.14 03:46:16 | 000,058,223 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices.tlb_31bf3856ad364e35_6.1.7600.16385_none_b5db771f9dc54856.manifest
[2009.07.14 03:54:56 | 000,028,014 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17.manifest
[2010.11.20 06:08:14 | 000,028,014 | ---- | M] () -- \Windows\winsxs\Manifests\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd.manifest
[2009.07.14 17:17:15 | 000,032,768 | ---- | M] () -- \Windows\winsxs\msil_system.enterpriseservices.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_e35e6073933ef2a3\System.EnterpriseServices.resources.dll
[2009.07.14 17:17:21 | 000,032,768 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.EnterpriseServices.resources.dll
[2010.11.05 03:53:33 | 000,032,768 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.EnterpriseServices.resources.dll
[2009.06.10 23:23:18 | 000,054,144 | ---- | M] () -- \Windows\winsxs\x86_netfx-clr_sys_entservcs_thunk_dll_b03f5f7f11d50a3a_6.1.7600.16385_none_26e756d174266d3a\System.EnterpriseServices.Thunk.dll
[2009.06.10 23:22:39 | 000,011,112 | ---- | M] () -- \Windows\winsxs\x86_netfx-sbs_sys_enterprisesvc_dll_31bf3856ad364e35_6.1.7600.16385_none_60ffafae87253a03\sbs_system.enterpriseservices.dll
[2009.06.10 23:23:18 | 000,040,960 | ---- | M] () -- \Windows\winsxs\x86_netfx-sys_enterpriseservices_tlb_b03f5f7f11d50a3a_6.1.7600.16385_none_f0513a301e5d7705\System.EnterpriseServices.tlb
[2009.06.10 23:23:18 | 000,258,048 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17\System.EnterpriseServices.dll
[2009.07.13 22:46:36 | 000,113,664 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7600.16385_none_aa2ded886a639c17\System.EnterpriseServices.Wrapper.dll
[2010.11.05 03:58:08 | 000,258,048 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd\System.EnterpriseServices.dll
[2010.11.20 06:12:59 | 000,113,664 | ---- | M] () -- \Windows\winsxs\x86_system.enterpriseservices_b03f5f7f11d50a3a_6.1.7601.17514_none_aa02fb0c6abae2cd\System.EnterpriseServices.Wrapper.dll
< serial.txt /s >
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Documents and Settings\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Downloads\tot conv\tot conv\Serial.txt
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt
[2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Users\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt
[2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Users\lada\Downloads\tot conv\tot conv\Serial.txt
[2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Users\lada\Games\Unreal Tournament 3\Serial.txt
< %APPDATA%\*.* >
[2010.08.18 20:17:24 | 007,846,904 | ---- | M] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2011.06.26 20:02:33 | 000,071,680 | ---- | M] () -- C:\Users\lada\AppData\Roaming\chrtmp
[2010.09.28 12:48:59 | 000,000,157 | ---- | M] () -- C:\Users\lada\AppData\Roaming\default.rss
[2010.06.28 21:46:22 | 000,000,000 | ---- | M] () -- C:\Users\lada\AppData\Roaming\downloads.m3u
[2010.08.15 20:24:28 | 012,017,880 | ---- | M] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,099,384 | ---- | M] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.06.03 20:10:22 | 000,007,859 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.cat
[2010.06.03 20:10:22 | 000,001,167 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.inf
[2010.06.03 20:10:56 | 000,000,034 | ---- | M] () -- C:\Users\lada\AppData\Roaming\pcouffin.log
[2010.06.03 20:10:22 | 000,082,816 | ---- | M] (VSO Software) -- C:\Users\lada\AppData\Roaming\pcouffin.sys
[2010.12.28 13:07:14 | 000,000,990 | -HS- | M] () -- C:\Users\lada\AppData\Roaming\systemfl.$dk
[2010.12.21 19:12:44 | 000,001,057 | ---- | M] () -- C:\Users\lada\AppData\Roaming\vso_ts_preview.xml
[2010.05.04 20:58:16 | 006,652,432 | ---- | M] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
< %APPDATA%\*.exe /s >
[2010.08.18 20:17:24 | 007,846,904 | ---- | M] (IObit ) -- C:\Users\lada\AppData\Roaming\asc-setup.exe
[2010.08.15 20:24:28 | 012,017,880 | ---- | M] (Key Metric Software) -- C:\Users\lada\AppData\Roaming\fs5-setup-x86.exe
[2010.06.03 20:10:22 | 000,099,384 | ---- | M] () -- C:\Users\lada\AppData\Roaming\inst.exe
[2010.05.04 20:58:16 | 006,652,432 | ---- | M] (YL Computing, Inc ) -- C:\Users\lada\AppData\Roaming\wuinstall.exe
[2009.08.11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\ac3config.exe
[2009.08.11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\spdif_test.exe
[2010.03.22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\AC3 Filter\unins000.exe
[2010.02.23 17:01:52 | 001,185,871 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\FFDShow\unins000.exe
[2010.08.14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\dsmux.exe
[2010.08.14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\gdsmux.exe
[2010.08.14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\mkv2vfr.exe
[2010.09.30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\lada\AppData\Roaming\BSplayer PRO\Haali media splitter\uninstall.exe
[2011.01.06 11:14:46 | 000,894,792 | ---- | M] (Acronis) -- C:\Users\lada\AppData\Roaming\C7C3EBD8-5950-48EF-84D3-1DE2C2ACD953\setupapp.exe
[2011.08.08 08:41:08 | 000,408,896 | ---- | M] (Hewlett-Packard Company ) -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\fisb13lx.dso\sp39949.exe
[2009.10.26 14:09:22 | 000,372,736 | ---- | M] (Macrovision Corporation) -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\hv1wgquj.gce\eM112W7\e-Messenger 112 Win 7 driver\setup.exe
[2011.08.11 16:50:21 | 034,442,296 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Easeware\DriverEasy\drivers\ie3qckfn.nug\Nokia_PC_Suite_eng_us_web.exe
[2010.10.15 13:23:28 | 022,451,712 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FORMasistent.exe
[2011.01.20 14:39:50 | 025,775,616 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FORMstudio.exe
[2010.10.15 09:46:00 | 003,521,024 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\FSUpdate.exe
[2011.01.20 12:04:38 | 001,188,437 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\unins000.exe
[2009.11.06 12:17:52 | 003,965,440 | ---- | M] (Kastner software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgm\Upgrade.exe
[2010.05.04 15:59:54 | 024,757,760 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FORMasistent.exe
[2010.05.04 15:56:00 | 033,097,216 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FORMstudio.exe
[2009.12.16 14:06:30 | 003,479,040 | ---- | M] (KASTNER software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\FSUpdate.exe
[2010.05.15 12:58:00 | 001,188,437 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\unins000.exe
[2009.11.06 12:17:52 | 003,965,440 | ---- | M] (Kastner software s.r.o.) -- C:\Users\lada\AppData\Roaming\Kastner software\Form Studio\Backup\Prgs\Upgrade.exe
[2011.10.21 15:16:23 | 000,005,430 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_532EEF936FFAE0ABE2522D.exe
[2011.10.21 15:16:23 | 000,005,430 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_A290953C7595C4E6A1FDBA.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_1E02B3D8732010A792DC8B.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_21F3885A18D238E15AAE81.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_3B5A55730F6304D4268D6F.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_415493353D745EEA216D94.exe
[2010.09.21 07:52:58 | 000,009,662 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_4D8AF1E1FDD6496A9CE99A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_57B371F94C0C0A4DB7DF65.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_6FEFF9B68218417F98F549.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_806048DC66200FE6D24FF3.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_85972F4A73DF7EADFBAFC2.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_934312A2105DE40686D86A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_A753214149FB4F8721C1CB.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_A7A1F24988209FFD6FF84A.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_C7EFEC170C2E3BE8B9D183.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_CF15DB293FB3ABD44856FB.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_D707CE1C009F1381803C2C.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_FD8B6BA922FF5C34868F02.exe
[2010.09.21 07:52:58 | 000,287,934 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{18963CC4-0161-47F6-A98D-55FD37295980}\_FF1A5B1631F358DBDD94AE.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\ARPPRODUCTICON.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\cit200.exe_9CDEC547A50547CA991CDB65F3C0CB87.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\NewShortcut1_9CDEC547A50547CA991CDB65F3C0CB87_3.exe
[2011.05.15 17:43:46 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{9CDEC547-A505-47CA-991C-DB65F3C0CB87}\NewShortcut2_9CDEC547A50547CA991CDB65F3C0CB87.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_7821278E3179A951288E4F.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_BBA79F13A1F0618ED6C3E1.exe
[2010.10.03 18:30:00 | 000,094,334 | R--- | M] () -- C:\Users\lada\AppData\Roaming\Microsoft\Installer\{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}\_C9C2C62A5E0B9A4C5E1A62.exe
[2011.02.12 11:59:00 | 032,022,784 | ---- | M] (COMPELSON Laboratories ) -- C:\Users\lada\AppData\Roaming\MOBILedit\MOBILEditUpdate.exe
[2011.05.26 14:00:28 | 003,486,088 | ---- | M] (Ask) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[2011.06.27 10:47:35 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\pnup0.exe
[2011.05.25 22:36:40 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\rnupgagent.exe
[2011.06.27 10:48:04 | 025,824,400 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_data\RealPlayer.exe
[2011.06.27 10:47:23 | 000,675,088 | ---- | M] (RealNetworks, Inc.) -- C:\Users\lada\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_exe\RealPlayer.exe
[2009.09.23 14:55:40 | 000,116,008 | ---- | M] (U3 LLC) -- C:\Users\lada\AppData\Roaming\U3\temp\cleanup.exe
[2009.09.23 14:55:56 | 003,413,288 | -H-- | M] (SanDisk Corporation) -- C:\Users\lada\AppData\Roaming\U3\temp\Launchpad Removal.exe
[2011.03.02 14:51:22 | 001,373,480 | R--- | M] (U3 LLC) -- C:\Users\lada\AppData\Roaming\U3\temp\U3BkUpDir\LaunchU3.exe
< %SYSTEMDRIVE%\*.exe >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSucces >
< sTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{AB8DBCBE-2EB8-4080-A6D0-CFA3B846EFD4}\\: IMFRatelessTimeSource
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{b2f5a901-4080-11d1-a3ac-00c04fb950dc}\\: IADsTimestamp
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Record\{C04F6676-A27D-342D-953F-A3D24639E38E}\14.0.0.0\\Class: Microsoft.Office.Interop.Excel.XlHighlightChangesTime
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{AB8DBCBE-2EB8-4080-A6D0-CFA3B846EFD4}\\: IMFRatelessTimeSource
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{b2f5a901-4080-11d1-a3ac-00c04fb950dc}\\: IADsTimestamp
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS\\JobNoProgressTimeout: 1209600
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Canon MP210 series Printer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Fax\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Microsoft XPS Document Writer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Odeslat do aplikace OneNote 2010\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\Software602 Print2PDF\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Search\Gathering Manager\\FilterHostProcessTimeout: 120000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Canon MP210 series Printer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Fax\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Microsoft XPS Document Writer\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Odeslat do aplikace OneNote 2010\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Printers\Software602 Print2PDF\\dnsTimeout: 15000
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Power\\HiberCompressTime: 5176
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{95C9C385-095A-4B3E-B6A4-A2396773D3D0}\\LeaseTerminatesTime: 1319557416
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar\Settings\General\\LastUpdateGamesTime: 1296304016
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
PENDINGFILERENAMEOPERATIONS REG_MULTI_SZ \??\C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\downloads.sqlite\0\??\C:\Users\lada\AppData\Local\Temp\~nsu.tmp\Au_.exe\0\??\C:\Users\lada\AppData\Local\Temp\~nsu.tmp\0\??\C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll\0\??\C:\Program Files (x86)\Conduit\Community Alerts\0\??\C:\Program Files (x86)\Conduit\0\??\C:\Users\lada\AppData\LocalLow\Conduit
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.10.25 15:13:58 | 000,000,512 | ---- | M] () MD5=257F469A4905D2F8F8C56FD0411F8BE9 -- C:\PhysicalMBR.bin
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 6104 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 157 bytes -> C:\ProgramData\Temp:1677AB3F
@Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:D1B5B4F1
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:CC2DDA0D
< End of report >
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu.Děkuji
Děkuji za požadované logy Mrknu na to zítra ráno Dobrou noc 
Mrknu na to zítra ráno Dobrou noc Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivní kontrolu.Děkuji
tu je ten Extras
OTL Extras logfile created on: 25.10.2011 15:12:12 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\lada\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 36,98% Memory free
8,00 Gb Paging File | 4,80 Gb Available in Paging File | 59,97% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 160,69 Gb Total Space | 50,19 Gb Free Space | 31,24% Space Free | Partition Type: NTFS
Drive D: | 171,07 Gb Total Space | 48,46 Gb Free Space | 28,33% Space Free | Partition Type: NTFS
Drive E: | 201,53 Gb Total Space | 119,44 Gb Free Space | 59,27% Space Free | Partition Type: NTFS
Drive F: | 304,71 Gb Total Space | 66,12 Gb Free Space | 21,70% Space Free | Partition Type: NTFS
Drive G: | 129,08 Gb Total Space | 53,36 Gb Free Space | 41,34% Space Free | Partition Type: NTFS
Drive H: | 337,03 Gb Total Space | 239,90 Gb Free Space | 71,18% Space Free | Partition Type: NTFS
Computer Name: LADA-PC | User Name: lada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [RapidShareManagerEmail] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -mailto "%1" (RapidShare AG)
Directory [RapidShareManagerUpload] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -sendto "%1" (RapidShare AG)
Directory [TVersity] -- "C:\ProgramData\TVersity\Media Server\GUILaunch.exe" -type "folder" -url "%1" -title "" -tags "" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [RapidShareManagerEmail] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -mailto "%1" (RapidShare AG)
Directory [RapidShareManagerUpload] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -sendto "%1" (RapidShare AG)
Directory [TVersity] -- "C:\ProgramData\TVersity\Media Server\GUILaunch.exe" -type "folder" -url "%1" -title "" -tags "" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 -- (Trend Media Corporation Limited)
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 -- (Trend Media Corporation Limited)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series" = Canon MP210 series
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{2A64B9EB-AAEF-462B-8D5A-855B1DD5467A}" = O&O CleverCache
"{3156336D-8E44-3671-A6FE-AE51D3D6564E}" = Microsoft Windows SDK for Windows 7 (7.1)
"{3D17DE74-D206-4387-A033-089241A0C0D6}" = Windows 7 Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{56F26668-13DA-497A-883F-61434A10CBAB}" = MobileMe Control Panel
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6C8D7973-31F9-32E1-A820-8DD857910323}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{74F18B42-D441-4E7F-8984-BDF8050B180D}" = Microsoft Diagnostics and Recovery Toolset 6.5
"{77B8B4A5-EE79-4907-A318-2DA86325B8D7}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{84452C2C-BDCC-36F3-A189-CE15F02A47FB}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (30514)
"{89026002-A893-42D9-9E20-6829B844735E}" = Application Verifier (x64)
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951E6223-AC28-345E-BCF4-B55C1267E321}" = Microsoft Windows SDK for Windows 7 Samples (30514)
"{A0B0F02C-410B-3DE3-9740-EC4C3D902532}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514)
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 280.26
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1" = SiSoftware Sandra Professional Home 2011
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}" = Debugging Tools for Windows (x64)
"{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
"{E5C95CA5-4565-4B9D-97ED-05088D775614}" = Apple Mobile Device Support
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"DriverEasy_is1" = DriverEasy 3.10.0
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"KLiteCodecPack64_is1" = K-Lite Codec Pack (64-bit) v4.7.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR 4.00 (64-bit)
"ZonerPhotoStudio13_CZ_is1" = Zoner Photo Studio 13
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03840E8D-A75E-4C49-ADFC-09A867C7F943}" = Readon TV Movie Radio Player 7.5.0.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011
"{07D77970-B205-460C-84E4-263F30455597}" = Nokia Ovi Suite
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0AD789D2-97EC-4844-A51E-DCADEF48ADD4}_is1" = Vzroy právních dokumentů 2010.2
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 1.1.3
"{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
"{13A5E785-5197-4EAD-8EE3-D660271E49BC}" = Feedback Tool
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{18963CC4-0161-47F6-A98D-55FD37295980}" = Splash PRO
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1D2CB22B-89CC-4DF2-B29D-1272CCB867CB}_is1" = Ashampoo HDD Control 2.01
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F698102-5739-441E-96F0-74F4EA540F06}" = Attansic Giga Ethernet Utility
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21040472-F8DF-48A9-A093-2986C1495670}" = Lineage® II: Freya (High Five)
"{215562B3-BBF1-4152-A404-FC580D96B70F}" = DownloadStudio
"{229AC843-98B6-4BDE-919A-30587C698D23}" = Slovakia Roads v6
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 26
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
"{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
"{2FD94FBC-07AE-475C-B522-BFE899B9048E}" = Garmin WebUpdater
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{32C74893-0243-4235-A6F3-201F0E5D2C03}" = Software602 Print2PDF
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{366FFC89-C800-4366-B903-B9C4314109A5}" = Garmin WebUpdater
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3DCF00F5-04A5-4543-A088-70548081120E}_is1" = Compiled Driver Disc (Full) 0.99
"{40007E5C-19C8-4A25-AD70-A99D77D0A7DA}" = Active Boot Disk
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{415030B8-3E8B-462A-8C03-41D95AA3AB3B}" = Medal of Honor (TM)
"{41A00174-B4EA-4E79-9CAF-DC118A878B92}" = Garmin City Navigator Europe NT 2012.10 Update
"{434D083E-7E9A-4D3A-914B-121000008100}" = Operation Flashpoint ®: Red River
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 5.0.2.1015
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4F50C25D-9236-42EE-86A4-F0BC39A543AE}" = TOPO Czech 3.1 PRO
"{510D2239-6C2E-457B-9590-485EC552D94D}" = Garmin USB Drivers
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{54699D7E-6710-4318-A488-7F8BF82BAB59}" = Testy Autoškola
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{578485F8-60F3-4C61-9183-0698E581B902}" = From Dust
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{66D6418E-466C-4567-B4E8-2CB29F5566DE}" = Adresy CR v1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6E19F210-3813-4002-B561-94D66AA182B6}" = Atheros Communications Inc.(R) L1 Gigabit Ethernet Driver
"{6EECB283-E65F-40EF-86D3-D51BF02A8D43}" = Microsoft Office Converter Pack
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{730C01C5-CAE4-46FE-BA13-8B3E637F8192}" = e-Messenger 112
"{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7A11431C-3B45-4932-9D83-2F4A609C18F3}" = Adresy CR v2
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7FAAB350-2014-4862-AE66-CBAEE20B6AFF}" = PowerDVD
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AC5EBE3-DAD6-4968-AE53-98E6E9CAAFE9}" = ATLAS Czech 2010 NT
"{8C20F904-9288-4A7A-A0C4-1458AA2B295E}" = TOPO Czech PRO 2011
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EF9F7D-D771-42E5-B235-B434AB2BF8F3}_is1" = Lark AntiSpyware 4.0
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{949815AB-D269-4DD3-AB1A-539432BAFC1E}" = TurboFLOORPLAN Dum & Interiér & Zahrada PRO
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}" = Victoria 2
"{9CCC78EF-027E-40E0-9B61-39932C65E3FE}" = Acronis Disk Director Home
"{9CDEC547-A505-47CA-991C-DB65F3C0CB87}" = Linksys Cordless Internet Telephony Kit
"{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3
"{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}" = HotFile AutoDownloader
"{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}" = ioCentre
"{A5A82A64-AA95-4BB0-8270-371BE1ADD26A}" = ATLAS Czech 2011 NT
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}" = Garmin Communicator Plugin
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Toolbars
"{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}" = DownloadStudio
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BE82A297-272E-48E3-BD1F-E15E6597E5F5}_is1" = ConvertGenius 3.6
"{BF05A015-B9F7-4127-8891-4266FC8F0992}_is1" = Vzroy právních dokumentů 2010.1
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{C679F9B9-C65D-4C65-BD6C-BF90B859E281}" = Trust 100K Series Webcam
"{CA70204D-9437-4646-942E-8172F62F96AD}" = Garmin City Navigator Europe NT 2011.30 Update
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0403C9C-0640-4C4B-89B5-57E2A0B36D1D}" = Atlas Czech 8.1NT
"{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D387C31D-971F-4EEC-8734-382B39AD04F0}" = Software602 Form Filler
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.12.327
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F1100000-0008-0000-0001-074957833700}" = ABBYY FineReader 11
"{F20C1251-1D0A-4944-B2AE-678581B33B19}" = Neverwinter Nights 2
"{F232C87C-6E92-4775-8210-DFE90B7777D9}" = CyberLink PowerDVD 11
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2E23139-3404-4E3C-9855-7724415D62A5}" = Dragon Age II
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F8E94B2B-B122-430D-B0EE-3664AC50A3FE}" = FolderSizes 5
"{FC274982-5AAD-4C20-848D-4424A5043009}_is1" = WinUtilities 9.95 Professional Edition
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3D World Map" = 3D World Map 2.1
"4Media HD Video Converter" = 4Media HD Video Converter 6
"4StoryCZ_is1" = 4Story 3.3
"6103-4188-8184-5707" = RapidShare Manager 2
"AC3 Decoder" = AC3 Decoder
"AC3Filter" = AC3Filter (remove only)
"AC3Filter_is1" = AC3Filter 1.63b
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced SystemCare 4_is1" = Advanced SystemCare 4
"Afterburner" = MSI Afterburner 2.0.0
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.50
"All Office Converter Pro_is1" = All Office Converter Pro 5.6
"All to Image Jpg/Jpeg Bmp Tiff Png Converter_is1" = All to Image Jpg/Jpeg Bmp Tiff Png Converter 5.6
"Ancient Castle 3D Screensaver_is1" = Ancient Castle 3D Screensaver 1.0
"Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10.0.1
"Ashampoo Core Tuner_is1" = Ashampoo Core Tuner 1.20
"Ashampoo Snap 3_is1" = Ashampoo Snap 3.40
"Ashampoo UnInstaller 3_is1" = Ashampoo UnInstaller 3.13
"Ashampoo WinOptimizer 7_is1" = Ashampoo WinOptimizer 7 v.7.26
"Ashampoo WinOptimizer 8_is1" = Ashampoo WinOptimizer 8 v.8.13
"Avidemux 2.5" = Avidemux 2.5
"BitTorrent" = BitTorrent
"BSPlayerp" = BS.Player PRO
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"Clock 3 New Free Screensaver_is1" = NewFreeScreensaver Clock 3
"CyberLink PowerDVD 10.0.1516.51" = CyberLink PowerDVD 10.0.1516.51 - odinstalovat češtinu
"češtiny do WebcamMax v. 4.1.2.2 4.1.2.2" = češtiny do WebcamMax v. 4.1.2.2 4.1.2.2
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Setup.divx.com" = DivX Setup
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"DVD X Player 5.5 Professional_is1" = DVD X Player 5.5 Professional
"Easy Video Converter_is1" = Easy Video Converter 4.2.8
"Efficient WMA MP3 Converter_is1" = Efficient WMA MP3 Converter v0.99
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FlashGet 3.3" = FlashGet 3.3
"FolderSizes 5 5.1.26" = FolderSizes 5
"FSCZ_is1" = FORM studio
"Game Booster_is1" = Game Booster
"GFWL_{434D083E-7E9A-4D3A-914B-121000008100}" = Operation Flashpoint ®: Red River
"Google Chrome" = Google Chrome
"Halloween 3D Screensaver_is1" = Halloween 3D Screensaver 1.1
"HCFR Colorimeter_is1" = HCFR Colorimeter Version 2.1.0
"iJoysoft MP4 Converter" = iJoysoft MP4 Converter
"ImgBurn" = ImgBurn
"InstallShield_{949815AB-D269-4DD3-AB1A-539432BAFC1E}" = TurboFLOORPLAN Dum & Interiér & Zahrada PRO
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"InstallShield_{F232C87C-6E92-4775-8210-DFE90B7777D9}" = CyberLink PowerDVD 11
"JDownloader" = JDownloader
"KC Softwares VideoInspector_is1" = KC Softwares VideoInspector
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 7.2.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.2.1300
"McAfee Security Scan" = McAfee Security Scan Plus
"MediaMonkey_is1" = MediaMonkey 4.0
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Mumble" = Mumble and Murmur
"MusicMp3Downloader" = Music Mp3 Downloader
"N360" = Norton 360
"nfsCarbonDigitalMetal2 New Free Screensaver_is1" = NewFreeScreensaver nfsCarbonDigitalMetal2
"nfsXmas02 New Free Screensaver_is1" = NewFreeScreensaver nfsXmas02
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"Notepad++" = Notepad++
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"Primal Pictures Interactive Foot and Ankle 2" = Primal Pictures Interactive Foot and Ankle 2
"Primal Pictures Interactive Thorax and Abdomen" = Primal Pictures Interactive Thorax and Abdomen
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PS3 Media Server" = PS3 Media Server
"RealPlayer 12.0" = RealPlayer
"Registrace uživatele zařízení Canon MP210 series" = Registrace uživatele zařízení Canon MP210 series
"Registry Mechanic_is1" = Registry Mechanic 10.0
"SAM3" = SAM Broadcaster (remove only)
"Smart Defrag 2_is1" = Smart Defrag 2
"SpeedFan" = SpeedFan (remove only)
"Startup Booster_is1" = Startup Booster v2.4
"Super Internet TV (Premium Edition)_is1" = Super Internet TV v8.0 (Premium Edition)
"szn-software-listicka" = Seznam Lištička (Všichni uživatelé tohoto počítače.)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"Theme Manager (Free)" = Theme Manager (Free)
"TmNationsForever_is1" = TmNationsForever
"Total Video Converter 3.12_is1" = Total Video Converter 3.12 080330
"Totalcmd" = Total Commander (Remove or Repair)
"Tropical Fish 3D Screensaver_is1" = Tropical Fish 3D Screensaver 1.1
"TrueCrypt" = TrueCrypt
"Turistické trasy 2.23" = Turistické trasy 2.23
"TVersity Codec Pack" = TVersity Codec Pack 1.4
"TVersity Media Server" = TVersity Media Server 1.9.3
"TwonkyBeam for Internet Explorer" = TwonkyBeam for Internet Explorer
"TwonkyMediaTwonkyMedia" = TwonkyMedia
"Ultra Document To Text Converter_is1" = Ultra Document To Text Converter 2.0
"UltraISO_is1" = UltraISO Premium V9.36
"USB Safely Remove_is1" = USB Safely Remove 4.0
"VLC media player" = VLC media player 1.1.11
"WebcamMax" = WebcamMax
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"Windows Doctor 2.5 Retail zoo_is1" = Windows Doctor 2.5
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WMS" = Wild Media Server (UPnP, DLNA, HTTP)
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"76f4758ca7e15dc6" = MusicJet
"FolderLock6" = Folder Lock
"NCsoft-Aion" = Aion
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)
"Tropico 4" = Tropico 4 1.00
"Winamp Detect" = Winamp Detector Plug-in
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"76f4758ca7e15dc6" = MusicJet
"FolderLock6" = Folder Lock
"NCsoft-Aion" = Aion
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)
"Tropico 4" = Tropico 4 1.00
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 15.2.2011 3:48:33 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 3:48:34 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 7:14:12 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 7:14:12 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 7:15:33 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 7:15:34 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 8:57:27 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 8:57:27 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 8:58:45 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 8:58:46 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
[ Media Center Events ]
Error - 27.3.2011 10:35:35 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 16:35:34 - Načtení položky MCESpotlight se nezdařilo. (Chyba: Nadřízené
připojení bylo uzavřeno: Došlo k neočekávané chybě při odeslání.)
Error - 27.3.2011 11:37:56 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 17:37:51 - Načtení položky MCESpotlight se nezdařilo. (Chyba: Ke vzdálenému
serveru se nelze připojit.)
Error - 12.7.2011 23:31:40 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 5:31:35 - Chyba při připojování k Internetu 5:31:35 - Nelze kontaktovat
server..
Error - 13.7.2011 0:37:25 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 6:37:19 - Chyba při připojování k Internetu 6:37:19 - Nelze kontaktovat
server..
[ System Events ]
Error - 25.10.2011 2:44:25 | Computer Name = lada-PC | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 25.10.2011 3:11:55 | Computer Name = lada-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error - 25.10.2011 3:44:19 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 4:28:20 | Computer Name = lada-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku E: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error - 25.10.2011 4:44:07 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 5:44:02 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 6:43:40 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 7:45:50 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 8:44:11 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 9:43:49 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
[ TuneUp Events ]
Error - 1.11.2010 7:51:41 | Computer Name = lada-PC | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
OTL Extras logfile created on: 25.10.2011 15:12:12 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\lada\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 36,98% Memory free
8,00 Gb Paging File | 4,80 Gb Available in Paging File | 59,97% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 160,69 Gb Total Space | 50,19 Gb Free Space | 31,24% Space Free | Partition Type: NTFS
Drive D: | 171,07 Gb Total Space | 48,46 Gb Free Space | 28,33% Space Free | Partition Type: NTFS
Drive E: | 201,53 Gb Total Space | 119,44 Gb Free Space | 59,27% Space Free | Partition Type: NTFS
Drive F: | 304,71 Gb Total Space | 66,12 Gb Free Space | 21,70% Space Free | Partition Type: NTFS
Drive G: | 129,08 Gb Total Space | 53,36 Gb Free Space | 41,34% Space Free | Partition Type: NTFS
Drive H: | 337,03 Gb Total Space | 239,90 Gb Free Space | 71,18% Space Free | Partition Type: NTFS
Computer Name: LADA-PC | User Name: lada | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [RapidShareManagerEmail] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -mailto "%1" (RapidShare AG)
Directory [RapidShareManagerUpload] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -sendto "%1" (RapidShare AG)
Directory [TVersity] -- "C:\ProgramData\TVersity\Media Server\GUILaunch.exe" -type "folder" -url "%1" -title "" -tags "" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [RapidShareManagerEmail] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -mailto "%1" (RapidShare AG)
Directory [RapidShareManagerUpload] -- C:\Program Files (x86)\RapidShareManager\RapidShareManager.exe -sendto "%1" (RapidShare AG)
Directory [TVersity] -- "C:\ProgramData\TVersity\Media Server\GUILaunch.exe" -type "folder" -url "%1" -title "" -tags "" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 -- (Trend Media Corporation Limited)
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 -- (Trend Media Corporation Limited)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series" = Canon MP210 series
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{2A64B9EB-AAEF-462B-8D5A-855B1DD5467A}" = O&O CleverCache
"{3156336D-8E44-3671-A6FE-AE51D3D6564E}" = Microsoft Windows SDK for Windows 7 (7.1)
"{3D17DE74-D206-4387-A033-089241A0C0D6}" = Windows 7 Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{56F26668-13DA-497A-883F-61434A10CBAB}" = MobileMe Control Panel
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6C8D7973-31F9-32E1-A820-8DD857910323}" = Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{74F18B42-D441-4E7F-8984-BDF8050B180D}" = Microsoft Diagnostics and Recovery Toolset 6.5
"{77B8B4A5-EE79-4907-A318-2DA86325B8D7}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{84452C2C-BDCC-36F3-A189-CE15F02A47FB}" = Microsoft Windows SDK for Windows 7 Headers and Libraries (30514)
"{89026002-A893-42D9-9E20-6829B844735E}" = Application Verifier (x64)
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951E6223-AC28-345E-BCF4-B55C1267E321}" = Microsoft Windows SDK for Windows 7 Samples (30514)
"{A0B0F02C-410B-3DE3-9740-EC4C3D902532}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514)
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 280.26
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1" = SiSoftware Sandra Professional Home 2011
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}" = Debugging Tools for Windows (x64)
"{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}" = Bonjour
"{E5C95CA5-4565-4B9D-97ED-05088D775614}" = Apple Mobile Device Support
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"DriverEasy_is1" = DriverEasy 3.10.0
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"KLiteCodecPack64_is1" = K-Lite Codec Pack (64-bit) v4.7.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR 4.00 (64-bit)
"ZonerPhotoStudio13_CZ_is1" = Zoner Photo Studio 13
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03840E8D-A75E-4C49-ADFC-09A867C7F943}" = Readon TV Movie Radio Player 7.5.0.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011
"{07D77970-B205-460C-84E4-263F30455597}" = Nokia Ovi Suite
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0AD789D2-97EC-4844-A51E-DCADEF48ADD4}_is1" = Vzroy právních dokumentů 2010.2
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 1.1.3
"{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
"{13A5E785-5197-4EAD-8EE3-D660271E49BC}" = Feedback Tool
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{18963CC4-0161-47F6-A98D-55FD37295980}" = Splash PRO
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1D2CB22B-89CC-4DF2-B29D-1272CCB867CB}_is1" = Ashampoo HDD Control 2.01
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F698102-5739-441E-96F0-74F4EA540F06}" = Attansic Giga Ethernet Utility
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21040472-F8DF-48A9-A093-2986C1495670}" = Lineage® II: Freya (High Five)
"{215562B3-BBF1-4152-A404-FC580D96B70F}" = DownloadStudio
"{229AC843-98B6-4BDE-919A-30587C698D23}" = Slovakia Roads v6
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 26
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
"{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
"{2FD94FBC-07AE-475C-B522-BFE899B9048E}" = Garmin WebUpdater
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{32C74893-0243-4235-A6F3-201F0E5D2C03}" = Software602 Print2PDF
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{366FFC89-C800-4366-B903-B9C4314109A5}" = Garmin WebUpdater
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3DCF00F5-04A5-4543-A088-70548081120E}_is1" = Compiled Driver Disc (Full) 0.99
"{40007E5C-19C8-4A25-AD70-A99D77D0A7DA}" = Active Boot Disk
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{415030B8-3E8B-462A-8C03-41D95AA3AB3B}" = Medal of Honor (TM)
"{41A00174-B4EA-4E79-9CAF-DC118A878B92}" = Garmin City Navigator Europe NT 2012.10 Update
"{434D083E-7E9A-4D3A-914B-121000008100}" = Operation Flashpoint ®: Red River
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 5.0.2.1015
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4F50C25D-9236-42EE-86A4-F0BC39A543AE}" = TOPO Czech 3.1 PRO
"{510D2239-6C2E-457B-9590-485EC552D94D}" = Garmin USB Drivers
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{54699D7E-6710-4318-A488-7F8BF82BAB59}" = Testy Autoškola
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{578485F8-60F3-4C61-9183-0698E581B902}" = From Dust
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{66D6418E-466C-4567-B4E8-2CB29F5566DE}" = Adresy CR v1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6E19F210-3813-4002-B561-94D66AA182B6}" = Atheros Communications Inc.(R) L1 Gigabit Ethernet Driver
"{6EECB283-E65F-40EF-86D3-D51BF02A8D43}" = Microsoft Office Converter Pack
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{730C01C5-CAE4-46FE-BA13-8B3E637F8192}" = e-Messenger 112
"{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7A11431C-3B45-4932-9D83-2F4A609C18F3}" = Adresy CR v2
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7FAAB350-2014-4862-AE66-CBAEE20B6AFF}" = PowerDVD
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AC5EBE3-DAD6-4968-AE53-98E6E9CAAFE9}" = ATLAS Czech 2010 NT
"{8C20F904-9288-4A7A-A0C4-1458AA2B295E}" = TOPO Czech PRO 2011
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EF9F7D-D771-42E5-B235-B434AB2BF8F3}_is1" = Lark AntiSpyware 4.0
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{949815AB-D269-4DD3-AB1A-539432BAFC1E}" = TurboFLOORPLAN Dum & Interiér & Zahrada PRO
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}" = Victoria 2
"{9CCC78EF-027E-40E0-9B61-39932C65E3FE}" = Acronis Disk Director Home
"{9CDEC547-A505-47CA-991C-DB65F3C0CB87}" = Linksys Cordless Internet Telephony Kit
"{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3
"{A20DF6AC-0300-45E2-8152-7D677E4E8CF5}" = HotFile AutoDownloader
"{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}" = ioCentre
"{A5A82A64-AA95-4BB0-8270-371BE1ADD26A}" = ATLAS Czech 2011 NT
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}" = Garmin Communicator Plugin
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Toolbars
"{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}" = DownloadStudio
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BE82A297-272E-48E3-BD1F-E15E6597E5F5}_is1" = ConvertGenius 3.6
"{BF05A015-B9F7-4127-8891-4266FC8F0992}_is1" = Vzroy právních dokumentů 2010.1
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{C679F9B9-C65D-4C65-BD6C-BF90B859E281}" = Trust 100K Series Webcam
"{CA70204D-9437-4646-942E-8172F62F96AD}" = Garmin City Navigator Europe NT 2011.30 Update
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0403C9C-0640-4C4B-89B5-57E2A0B36D1D}" = Atlas Czech 8.1NT
"{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D387C31D-971F-4EEC-8734-382B39AD04F0}" = Software602 Form Filler
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.12.327
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F1100000-0008-0000-0001-074957833700}" = ABBYY FineReader 11
"{F20C1251-1D0A-4944-B2AE-678581B33B19}" = Neverwinter Nights 2
"{F232C87C-6E92-4775-8210-DFE90B7777D9}" = CyberLink PowerDVD 11
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2E23139-3404-4E3C-9855-7724415D62A5}" = Dragon Age II
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F8E94B2B-B122-430D-B0EE-3664AC50A3FE}" = FolderSizes 5
"{FC274982-5AAD-4C20-848D-4424A5043009}_is1" = WinUtilities 9.95 Professional Edition
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3D World Map" = 3D World Map 2.1
"4Media HD Video Converter" = 4Media HD Video Converter 6
"4StoryCZ_is1" = 4Story 3.3
"6103-4188-8184-5707" = RapidShare Manager 2
"AC3 Decoder" = AC3 Decoder
"AC3Filter" = AC3Filter (remove only)
"AC3Filter_is1" = AC3Filter 1.63b
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced SystemCare 4_is1" = Advanced SystemCare 4
"Afterburner" = MSI Afterburner 2.0.0
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.50
"All Office Converter Pro_is1" = All Office Converter Pro 5.6
"All to Image Jpg/Jpeg Bmp Tiff Png Converter_is1" = All to Image Jpg/Jpeg Bmp Tiff Png Converter 5.6
"Ancient Castle 3D Screensaver_is1" = Ancient Castle 3D Screensaver 1.0
"Ashampoo Burning Studio 10_is1" = Ashampoo Burning Studio 10.0.1
"Ashampoo Core Tuner_is1" = Ashampoo Core Tuner 1.20
"Ashampoo Snap 3_is1" = Ashampoo Snap 3.40
"Ashampoo UnInstaller 3_is1" = Ashampoo UnInstaller 3.13
"Ashampoo WinOptimizer 7_is1" = Ashampoo WinOptimizer 7 v.7.26
"Ashampoo WinOptimizer 8_is1" = Ashampoo WinOptimizer 8 v.8.13
"Avidemux 2.5" = Avidemux 2.5
"BitTorrent" = BitTorrent
"BSPlayerp" = BS.Player PRO
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"Clock 3 New Free Screensaver_is1" = NewFreeScreensaver Clock 3
"CyberLink PowerDVD 10.0.1516.51" = CyberLink PowerDVD 10.0.1516.51 - odinstalovat češtinu
"češtiny do WebcamMax v. 4.1.2.2 4.1.2.2" = češtiny do WebcamMax v. 4.1.2.2 4.1.2.2
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Setup.divx.com" = DivX Setup
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"DVD X Player 5.5 Professional_is1" = DVD X Player 5.5 Professional
"Easy Video Converter_is1" = Easy Video Converter 4.2.8
"Efficient WMA MP3 Converter_is1" = Efficient WMA MP3 Converter v0.99
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FlashGet 3.3" = FlashGet 3.3
"FolderSizes 5 5.1.26" = FolderSizes 5
"FSCZ_is1" = FORM studio
"Game Booster_is1" = Game Booster
"GFWL_{434D083E-7E9A-4D3A-914B-121000008100}" = Operation Flashpoint ®: Red River
"Google Chrome" = Google Chrome
"Halloween 3D Screensaver_is1" = Halloween 3D Screensaver 1.1
"HCFR Colorimeter_is1" = HCFR Colorimeter Version 2.1.0
"iJoysoft MP4 Converter" = iJoysoft MP4 Converter
"ImgBurn" = ImgBurn
"InstallShield_{949815AB-D269-4DD3-AB1A-539432BAFC1E}" = TurboFLOORPLAN Dum & Interiér & Zahrada PRO
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"InstallShield_{F232C87C-6E92-4775-8210-DFE90B7777D9}" = CyberLink PowerDVD 11
"JDownloader" = JDownloader
"KC Softwares VideoInspector_is1" = KC Softwares VideoInspector
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 7.2.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.2.1300
"McAfee Security Scan" = McAfee Security Scan Plus
"MediaMonkey_is1" = MediaMonkey 4.0
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Mumble" = Mumble and Murmur
"MusicMp3Downloader" = Music Mp3 Downloader
"N360" = Norton 360
"nfsCarbonDigitalMetal2 New Free Screensaver_is1" = NewFreeScreensaver nfsCarbonDigitalMetal2
"nfsXmas02 New Free Screensaver_is1" = NewFreeScreensaver nfsXmas02
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"Notepad++" = Notepad++
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"Primal Pictures Interactive Foot and Ankle 2" = Primal Pictures Interactive Foot and Ankle 2
"Primal Pictures Interactive Thorax and Abdomen" = Primal Pictures Interactive Thorax and Abdomen
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PS3 Media Server" = PS3 Media Server
"RealPlayer 12.0" = RealPlayer
"Registrace uživatele zařízení Canon MP210 series" = Registrace uživatele zařízení Canon MP210 series
"Registry Mechanic_is1" = Registry Mechanic 10.0
"SAM3" = SAM Broadcaster (remove only)
"Smart Defrag 2_is1" = Smart Defrag 2
"SpeedFan" = SpeedFan (remove only)
"Startup Booster_is1" = Startup Booster v2.4
"Super Internet TV (Premium Edition)_is1" = Super Internet TV v8.0 (Premium Edition)
"szn-software-listicka" = Seznam Lištička (Všichni uživatelé tohoto počítače.)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"Theme Manager (Free)" = Theme Manager (Free)
"TmNationsForever_is1" = TmNationsForever
"Total Video Converter 3.12_is1" = Total Video Converter 3.12 080330
"Totalcmd" = Total Commander (Remove or Repair)
"Tropical Fish 3D Screensaver_is1" = Tropical Fish 3D Screensaver 1.1
"TrueCrypt" = TrueCrypt
"Turistické trasy 2.23" = Turistické trasy 2.23
"TVersity Codec Pack" = TVersity Codec Pack 1.4
"TVersity Media Server" = TVersity Media Server 1.9.3
"TwonkyBeam for Internet Explorer" = TwonkyBeam for Internet Explorer
"TwonkyMediaTwonkyMedia" = TwonkyMedia
"Ultra Document To Text Converter_is1" = Ultra Document To Text Converter 2.0
"UltraISO_is1" = UltraISO Premium V9.36
"USB Safely Remove_is1" = USB Safely Remove 4.0
"VLC media player" = VLC media player 1.1.11
"WebcamMax" = WebcamMax
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"Windows Doctor 2.5 Retail zoo_is1" = Windows Doctor 2.5
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WMS" = Wild Media Server (UPnP, DLNA, HTTP)
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"76f4758ca7e15dc6" = MusicJet
"FolderLock6" = Folder Lock
"NCsoft-Aion" = Aion
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)
"Tropico 4" = Tropico 4 1.00
"Winamp Detect" = Winamp Detector Plug-in
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"76f4758ca7e15dc6" = MusicJet
"FolderLock6" = Folder Lock
"NCsoft-Aion" = Aion
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)
"Tropico 4" = Tropico 4 1.00
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 15.2.2011 3:48:33 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 3:48:34 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 7:14:12 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 7:14:12 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 7:15:33 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 7:15:34 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 8:57:27 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 8:57:27 | Computer Name = lada-PC | Source = PerfNet | ID = 2004
Description =
Error - 15.2.2011 8:58:45 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
Error - 15.2.2011 8:58:46 | Computer Name = lada-PC | Source = OOCleverCache | ID = 0
Description =
[ Media Center Events ]
Error - 27.3.2011 10:35:35 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 16:35:34 - Načtení položky MCESpotlight se nezdařilo. (Chyba: Nadřízené
připojení bylo uzavřeno: Došlo k neočekávané chybě při odeslání.)
Error - 27.3.2011 11:37:56 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 17:37:51 - Načtení položky MCESpotlight se nezdařilo. (Chyba: Ke vzdálenému
serveru se nelze připojit.)
Error - 12.7.2011 23:31:40 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 5:31:35 - Chyba při připojování k Internetu 5:31:35 - Nelze kontaktovat
server..
Error - 13.7.2011 0:37:25 | Computer Name = lada-PC | Source = MCUpdate | ID = 0
Description = 6:37:19 - Chyba při připojování k Internetu 6:37:19 - Nelze kontaktovat
server..
[ System Events ]
Error - 25.10.2011 2:44:25 | Computer Name = lada-PC | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 25.10.2011 3:11:55 | Computer Name = lada-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error - 25.10.2011 3:44:19 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 4:28:20 | Computer Name = lada-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku E: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error - 25.10.2011 4:44:07 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 5:44:02 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 6:43:40 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 7:45:50 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 8:44:11 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
Error - 25.10.2011 9:43:49 | Computer Name = lada-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
[ TuneUp Events ]
Error - 1.11.2010 7:51:41 | Computer Name = lada-PC | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
Re: Prosím o preventivní kontrolu.Děkuji
dobrou noc a díky
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivní kontrolu.Děkuji
Odinstalujte tyhle zbytečné, spíše škodící utility(Nemluvě o tom, že je máte cracknuté) Pravidla fora: č.1 a č.2, č.3Kód: Vybrat vše
Ashampoo WinOptimizer 8
Advanced SystemCare 4
Ashampoo HDD Control 2
Ashampoo Core Tuner
O&O CleverCache
Windows 7 Manager- Spustíme soubor OTL.exe (pokud máte Windows Vista nebo Windows 7,tak na soubor klikněte pravým tlačítkem myši a dejte ,,Spustit jako správce,,)
- Do dolního okna Vlastní skenování/opravy vložíme následující skript a stiskneme tlačítko Opravit
Kód: Vybrat vše
:OTL IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4 IE - HKLM\..\URLSearchHook: - No CLSID value found IE - HKLM\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - No CLSID value found IE - HKLM\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found IE - HKLM\..\URLSearchHook: {9384bd4c-dd14-4be9-80f7-f6277511e4f5} - No CLSID value found IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400 IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400 IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\URLSearchHook: - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=10188&bi=400 IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com/?a=ddr IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=10188&bi=400 IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {66bd2442-241b-44cd-8c7a-b51037053cdb} - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found IE - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - No CLSID value found [2011.09.28 18:04:19 | 000,000,000 | ---D | M] (Softonic-Eng7 Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} [2011.10.10 22:33:02 | 000,000,000 | ---D | M] (TVersitybar Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{66bd2442-241b-44cd-8c7a-b51037053cdb} [2011.09.27 14:14:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011.09.28 18:04:19 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} [2011.04.23 08:21:11 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\DTToolbar@toolbarnet.com [2011.04.13 11:09:43 | 000,000,000 | ---D | M] (PandoraTV Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\toolbar@ask.com [2011.04.11 20:51:03 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\anshif1t.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2010.05.09 18:07:24 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2011.04.11 20:51:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\bbga8gfw.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011.03.24 13:03:00 | 000,000,923 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\conduit.xml [2010.08.16 21:23:01 | 000,002,059 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\daemon-search.xml [2011.10.24 22:17:11 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-1.xml [2011.03.05 21:15:08 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-2.xml [2011.03.12 18:57:41 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-3.xml [2011.03.18 08:20:37 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-4.xml [2011.04.30 07:42:06 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-5.xml [2011.06.29 22:31:23 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-6.xml [2011.08.16 18:25:20 | 000,000,950 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin-7.xml [2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\icqplugin.xml CHR - Extension: Facemoods = C:\Users\lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.2.1_0\ O2:64bit: - BHO: (no name) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - No CLSID value found. O2:64bit: - BHO: (no name) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - No CLSID value found. O2 - BHO: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3 - HKLM\..\Toolbar: (PandoraTV Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3:64bit: - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O4 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003..\Run: [] File not found O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1000\..Trusted Domains: kuaiche.com ([software] http in Trusted sites) O15 - HKU\S-1-5-21-64356702-1420314229-3237286800-1003\..Trusted Domains: kuaiche.com ([software] http in Trusted sites) O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Handler\skype4com - No CLSID value found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. [2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job [2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job [2011.10.01 19:44:39 | 000,354,816 | ---- | C] () -- C:\Users\lada\AppData\Local\sysstem23.exe [2011.10.25 08:44:20 | 000,000,214 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job [2011.10.25 11:00:08 | 000,000,218 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job [9 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ] [1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Desktop\FILMOVÉ A HUDEBNÍ PROGRAMY\programy na convert souborů\tot conv\Serial.txt [2011.06.19 12:23:31 | 000,000,041 | ---- | M] () -- \Documents and Settings\lada\Desktop\UDRŽBA A JINÉ\Genius\Serial.txt [2010.07.16 06:53:14 | 000,000,258 | ---- | M] () -- \Documents and Settings\lada\Downloads\tot conv\tot conv\Serial.txt [2011.10.17 20:26:41 | 000,000,120 | ---- | M] () -- \Documents and Settings\lada\Favorites\WAREZ\Serials & keys - unlocks the world.URL [2009.03.19 04:21:30 | 000,000,075 | ---- | M] () -- \Documents and Settings\lada\Games\Unreal Tournament 3\Serial.txt @Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT @Alternate Data Stream - 6104 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh @Alternate Data Stream - 157 bytes -> C:\ProgramData\Temp:1677AB3F @Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:D1B5B4F1 @Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:CC2DDA0D :Files C:\Program Files (x86)\Ask.com\ C:\Program Files (x86)\DAEMON Tools Toolbar\ C:\Documents and Settings\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe /d C:\Documents and Settings\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe /d C:\Users\lada\Desktop\MOBIL\hs-ps755\hs-ps755\keygen.exe /d C:\Users\lada\Desktop\MOBIL\Smartphoneware Best Crypto V2.0 s60v3 SymbianOS 9.1 Keygen Hspda\keygen.exe /d C:\Documents and Settings\lada\Favorites\WAREZ\ /d C:\Documents and Settings\All Users\AutoKMS\AutoKMS.cmd /d C:\ProgramData\AutoKMS\AutoKMS.cmd /d C:\Users\All Users\AutoKMS\AutoKMS.cmd /d C:\Windows\AutoKMS\AutoKMS.exe /d C:\Windows\AutoKMS\AutoKMS.ini /d C:\Windows\AutoKMS\AutoKMS.log /d C:\Windows\Prefetch\AUTOKMS.EXE-97B3D7D9.pf /d C:\Windows\Tasks\AutoKMS.job /d C:\Windows\Tasks\AutoKMSDaily.job /d %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :Services ICQ Service gupdate gupdatem gusvc :Commands [ClearAllRestorePoints] [EmptyFlash] [EmptyTemp] [ResetHosts] - Po restartu pc se vám objeví log z OTL,ten mi sem prosím vložte..
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Přispějete na provoz fóra?