Logfile of random's system information tool 1.09 (written by random/random)
Run by Skola at 2011-10-27 21:38:16
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 6 GB (11%) free of 51 GB
Total RAM: 1975 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:39:08, on 27. 10. 2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19154)
Boot mode: Normal
Running processes:
C:\windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\IDManager\IDMan.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Windows\system32\igfxsrvc.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\IDManager\IEMonitor.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Users\Skola.UIPSUIP-Y4JHDKK\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\Skola.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicla& ... Terms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\IDManager\IDMIECC.dll
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\bh\facemoods.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodsTlbr.dll
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Family Tree Builder Update] E:\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\IDManager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\IDManager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\IDManager\IEExt.htm
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\windows\system32\rpcnet.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
--
End of file - 13953 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006UA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007UA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008UA.job
C:\windows\tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job
C:\windows\tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job
C:\windows\tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job
C:\windows\tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job
C:\windows\tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default
prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "keyword.URL" - "http://isearch.avg.com/search?cid=%7Be9 ... &sap=ku&q="
"{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}"=C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
quickstores@quickstores.de
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{AB2CE124-6272-4b12-94A9-7303C7397BD1}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
exeImagine.IMD
np-mswmp.dll
npdeployJava1.dll
npImagine.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
fcmdSrchstonicla.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\
avg@toolbar
C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\searchplugins\
avg-secure-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\IDManager\IDMIECC.dll [2011-04-15 210352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\windows\system32\mscoree.dll [2009-11-08 297808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21A88CB9-84D2-4020-A2D1-B25A21034884}]
HistoryTriggerBHO Class - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2010-09-15 35688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2011-09-27 2179936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.17.6\bh\facemoods.dll [2010-10-26 262144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll [2011-10-23 1451336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-09-14 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-06-22 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-21 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2010-10-18 1485112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2010-10-18 1485112]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-21 1233288]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodsTlbr.dll [2010-10-26 217088]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\windows\system32\mscoree.dll [2009-11-08 297808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-09-14 305328]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll [2011-10-23 1451336]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
""= []
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2010-10-13 111928]
"facemoods"=C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodssrv.exe [2010-10-26 323584]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2011-09-23 2404704]
"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2011-10-23 218440]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
"Family Tree Builder Update"=E:\MyHeritage\Bin\FTBCheckUpdates.exe [2011-09-15 225280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-07-15 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"IDMan"=C:\Program Files\IDManager\IDMan.exe [2011-04-25 3298712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files\Internet Download Manager\IDMan.exe /onboot []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2008-01-16 727592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-10-26 14:17:48 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\vlc
2011-10-26 14:17:48 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\dvdcss
2011-10-26 04:06:56 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Macromedia
2011-10-26 04:06:56 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Adobe
2011-10-26 04:00:01 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
2011-10-26 03:33:50 ----D---- C:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2011-10-26 03:29:44 ----D---- C:\Program Files\Common Files\BioWare
2011-10-26 00:11:46 ----A---- C:\windows\MyHeritage.INI
2011-10-26 00:11:04 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
2011-10-26 00:11:04 ----D---- C:\ProgramData\MyHeritage
2011-10-26 00:09:50 ----A---- C:\windows\system32\PaintX.dll
2011-10-26 00:09:49 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
2011-10-26 00:09:49 ----A---- C:\windows\system32\ijl15.dll
2011-10-23 06:53:04 ----D---- C:\ProgramData\Media Center Programs
2011-10-23 05:51:31 ----D---- C:\Program Files\AVG Secure Search
2011-10-19 16:18:33 ----D---- C:\Program Files\Common Files\Adobe
2011-10-15 06:19:54 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Tibo Software
2011-10-13 22:20:29 ----A---- C:\windows\system32\win32k.sys
2011-10-13 22:08:23 ----A---- C:\windows\system32\psisdecd.dll
2011-10-13 22:05:14 ----A---- C:\windows\system32\wininet.dll
2011-10-13 22:05:14 ----A---- C:\windows\system32\urlmon.dll
2011-10-13 22:05:13 ----A---- C:\windows\system32\jsproxy.dll
2011-10-13 22:05:13 ----A---- C:\windows\system32\iertutil.dll
2011-10-13 22:05:12 ----A---- C:\windows\system32\url.dll
2011-10-13 22:05:12 ----A---- C:\windows\system32\mshtml.dll
2011-10-13 22:05:11 ----A---- C:\windows\system32\ieframe.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\occache.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\mstime.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\mshtmled.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\msfeeds.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\ieUnatt.exe
2011-10-13 22:05:10 ----A---- C:\windows\system32\ieui.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\iesysprep.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\iesetup.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\iepeers.dll
2011-10-13 22:05:10 ----A---- C:\windows\system32\iedkcs32.dll
2011-10-13 22:05:09 ----A---- C:\windows\system32\msfeedssync.exe
2011-10-13 22:05:09 ----A---- C:\windows\system32\msfeedsbs.dll
2011-10-13 22:05:09 ----A---- C:\windows\system32\licmgr10.dll
2011-10-13 22:05:09 ----A---- C:\windows\system32\iernonce.dll
2011-10-13 22:05:09 ----A---- C:\windows\system32\ie4uinit.exe
2011-10-13 22:00:05 ----A---- C:\windows\system32\UIAutomationCore.dll
2011-10-13 22:00:05 ----A---- C:\windows\system32\oleaut32.dll
2011-10-13 22:00:05 ----A---- C:\windows\system32\oleaccrc.dll
2011-10-13 22:00:05 ----A---- C:\windows\system32\oleacc.dll
2011-10-11 06:51:38 ----A---- C:\windows\system32\XAudio2_7.dll
2011-10-11 06:51:38 ----A---- C:\windows\system32\XAPOFX1_5.dll
2011-10-11 06:51:38 ----A---- C:\windows\system32\xactengine3_7.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\XAudio2_6.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\D3DX9_43.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\d3dx11_43.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\d3dx10_43.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2011-10-11 06:51:37 ----A---- C:\windows\system32\D3DCompiler_43.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\XAudio2_5.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\xactengine3_6.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\xactengine3_5.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\d3dx11_42.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-10-11 06:51:36 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-10-11 06:51:34 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-10-11 06:51:31 ----A---- C:\windows\system32\XAudio2_2.dll
2011-10-11 06:51:31 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-10-11 06:51:31 ----A---- C:\windows\system32\xactengine3_2.dll
======List of files/folders modified in the last 1 month======
2011-10-27 21:38:33 ----D---- C:\windows\Prefetch
2011-10-27 21:38:24 ----D---- C:\Program Files\trend micro
2011-10-27 21:38:16 ----D---- C:\windows\Temp
2011-10-27 21:35:13 ----D---- C:\Windows
2011-10-27 21:32:54 ----SHD---- C:\windows\Installer
2011-10-27 21:04:06 ----D---- C:\windows\tracing
2011-10-27 17:37:25 ----D---- C:\ProgramData\MFAData
2011-10-27 17:37:22 ----D---- C:\windows\system32\drivers\AVG
2011-10-27 17:06:45 ----D---- C:\Program Files\Steam
2011-10-27 13:44:34 ----SHD---- C:\System Volume Information
2011-10-27 13:15:19 ----D---- C:\windows\System32
2011-10-27 13:15:19 ----D---- C:\windows\inf
2011-10-27 13:15:19 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-10-27 13:07:47 ----A---- C:\windows\system32\rpcnetp.exe
2011-10-27 13:07:45 ----A---- C:\windows\system32\rpcnet.dll
2011-10-27 06:22:01 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DMCache
2011-10-27 04:18:23 ----D---- C:\windows\winsxs
2011-10-27 04:18:23 ----D---- C:\Program Files\Internet Explorer
2011-10-27 04:13:21 ----A---- C:\windows\system32\rpcnetp.dll
2011-10-26 17:57:15 ----D---- C:\windows\ModemLogs
2011-10-26 09:46:02 ----D---- C:\windows\system32\catroot
2011-10-26 03:33:37 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-10-26 03:29:44 ----D---- C:\Program Files\Common Files
2011-10-26 00:47:01 ----D---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM
2011-10-26 00:11:04 ----HD---- C:\ProgramData
2011-10-25 11:43:56 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-25 08:10:33 ----RSD---- C:\windows\assembly
2011-10-23 05:51:31 ----D---- C:\Program Files
2011-10-23 05:51:22 ----D---- C:\windows\system32\drivers
2011-10-22 20:01:08 ----SD---- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft
2011-10-20 02:12:11 ----D---- C:\ProgramData\Adobe
2011-10-19 16:18:33 ----D---- C:\Program Files\Adobe
2011-10-19 06:38:28 ----D---- C:\windows\system32\catroot2
2011-10-15 10:44:57 ----D---- C:\Program Files\Common Files\Steam
2011-10-14 07:57:42 ----D---- C:\windows\rescache
2011-10-14 07:54:42 ----D---- C:\windows\Microsoft.NET
2011-10-14 07:39:49 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-14 07:38:19 ----D---- C:\windows\system32\migration
2011-10-14 07:38:19 ----D---- C:\Program Files\Windows Mail
2011-10-14 07:38:19 ----AD---- C:\windows\system32\sk-SK
2011-10-14 03:20:04 ----D---- C:\ProgramData\Microsoft Help
2011-10-10 08:03:51 ----D---- C:\windows\system32\Tasks
2011-09-30 21:43:36 ----D---- C:\Program Files\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSEH;AVGIDSEH; C:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2010-06-10 45648]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2011-08-13 443448]
R1 Avgldx86;AVG AVI Loader Driver; C:\windows\system32\DRIVERS\avgldx86.sys [2011-07-11 229840]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\windows\system32\DRIVERS\avgmfx86.sys [2011-08-08 40016]
R1 Avgtdix;AVG TDI Driver; C:\windows\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-08-08 281760]
R2 IDMWFP;IDMWFP; C:\windows\system32\DRIVERS\idmwfp.sys [2011-03-28 86792]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-08-08 25888]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-11-21 1204128]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 AVGIDSDriver;AVGIDSDriver; C:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134736]
R3 AVGIDSFilter;AVGIDSFilter; C:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
R3 AVGIDSShim;AVGIDSShim; C:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-07-11 16720]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Bluetooth Enumerator Service; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-10 22528]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2008-02-01 80424]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2008-02-01 80936]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2008-02-01 16168]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-10 148992]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-03-27 1810992]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
S3 auo9r7k8;auo9r7k8; C:\windows\system32\drivers\auo9r7k8.sys []
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\windows\system32\DRIVERS\ewusbdev.sys []
S3 LgBttPort;LGE Bluetooth TransPort; C:\windows\system32\DRIVERS\lgbtport.sys []
S3 lgbusenum;LG Bluetooth Bus Enumerator; C:\windows\system32\DRIVERS\lgbtbus.sys []
S3 LGVMODEM;LGE Virtual Modem; C:\windows\system32\DRIVERS\lgvmodem.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 usbbus;LGE Mobile Composite USB Device; C:\windows\system32\DRIVERS\lgusbbus.sys [2010-01-21 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\windows\system32\DRIVERS\lgusbdiag.sys [2010-01-21 20864]
S3 USBModem;LGE Mobile USB Modem; C:\windows\system32\DRIVERS\lgusbmodem.sys [2010-01-21 24960]
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbvideo;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2011-09-12 5265248]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 rpcnet;Remote Procedure Call (RPC) Net; C:\windows\system32\rpcnet.exe [2011-07-14 58288]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-11-23 1483072]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 vToolbarUpdater;vToolbarUpdater; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe [2011-09-09 246600]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-07-12 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-29 31048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-07-12 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-15 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-10-15 419624]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola ntb
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola ntb
Zdravim a pekne rano preji 
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start adp3132.sys AGP440.sys ahcix86.sys ahcix86s.sys atapi.sys autochk.exe cdrom.sys cngaudit.dll cryptsvc.dll eNetHook.dll eventlog.dll explorer.exe hal.dll Changer.sys iaStor.sys iastorv.sys IdeChnDr.sys isapnp.sys JakNDis.sys KR10N.sys logevent.dll lsass.exe mv61xx.sys ndis.sys netlogon.dll ntelogon.dll nvata.sys nvatabus.sys nvgts.sys nvraid.sys nvrd32.sys nvstor.sys nvstor32.sys scecli.dll sceclt.dll smss.exe svchost.exe symmpi.sys tcpip.sys userinit.exe vaxscsi.sys viamraid.sys viasraid.sys ViPrt.sys winlogon.exe ws2_32.dll /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola ntb
kedže mi to vypisuje, že som prekročil limit posielam obidve textové dokumenty v jednom zipe
- Přílohy
-
- otl.zip
- (37.34 KiB) Staženo 44 x
Re: Preventivní kontrola ntb
Vlozte mi logy sem prosim - rozdelte je do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola ntb
OTL Extras logfile created on: 30. 10. 2011 2:27:14 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1,93 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 61,20% Memory free
4,10 Gb Paging File | 2,87 Gb Available in Paging File | 70,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 50,00 Gb Total Space | 1,66 Gb Free Space | 3,33% Space Free | Partition Type: NTFS
Drive E: | 90,00 Gb Total Space | 70,70 Gb Free Space | 78,55% Space Free | Partition Type: NTFS
Drive I: | 465,76 Gb Total Space | 135,38 Gb Free Space | 29,07% Space Free | Partition Type: NTFS
Computer Name: UIPSUIP-Y4JHDKK | User Name: Skola | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{013C15AD-342D-4FE5-B7A8-831741B337E1}" = lport=445 | protocol=6 | dir=in | app=system |
"{262AB33D-2B61-4301-A450-5D719A45F861}" = lport=138 | protocol=17 | dir=in | app=system |
"{496AC6CF-6BD2-4924-939D-E82C2138009E}" = lport=2869 | protocol=6 | dir=in | app=system |
"{66587AE8-5610-4741-AD90-8370FD60ECC7}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{74D875D3-017E-4A04-BFD8-B880C67F9B71}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{78ABBCF1-880B-413A-9A19-445D9915CD98}" = rport=137 | protocol=17 | dir=out | app=system |
"{7DD0E5E7-CF9D-4685-B996-DA759624A0B0}" = rport=139 | protocol=6 | dir=out | app=system |
"{80798403-D0C6-484A-B28B-6D78AAF3C524}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8BBB5454-8EC0-4047-897C-AE19829E4B53}" = lport=139 | protocol=6 | dir=in | app=system |
"{910D6100-BD93-49FC-9272-0A4EC563A754}" = lport=137 | protocol=17 | dir=in | app=system |
"{CE7A2666-948F-4FC0-B018-2BD7F23006CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{E6B1ACDD-6B7C-4542-9D67-A58115D9D6C7}" = rport=138 | protocol=17 | dir=out | app=system |
"{EDEECEAE-C2E7-469B-9988-4DA0BA49DE59}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01A02DCF-5E43-4133-97D7-F13AAF4A74F0}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{121BC6A9-E281-425B-B85D-4A80D8C6C6FD}" = protocol=6 | dir=in | app=f:\software\game\two worlds ii\twoworlds2.exe |
"{1D396EBD-6616-416B-9F29-B55DDFD3C707}" = protocol=6 | dir=in | app=h:\software\game\gta\eflc.exe |
"{20C27FA5-291A-4AB9-832B-566DB5756957}" = protocol=6 | dir=in | app=d:\software\game\dungeon siege\dungeonsiege2.exe |
"{27EE439E-0868-4050-B3E7-180542E6555F}" = protocol=17 | dir=in | app=h:\software\game\gta\eflc.exe |
"{2AF0A522-A48A-41BB-B57A-9CE61C21E85E}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{2BEB401D-874E-46D4-8264-3902188798DC}" = protocol=6 | dir=in | app=c:\program files\internet download manager\idman.exe |
"{2FDB98E9-1121-44F2-BD73-B0F2F4C5AD8A}" = protocol=17 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.exe |
"{35C05E26-CD95-4D95-80F9-A7C1963CD037}" = protocol=17 | dir=in | app=f:\software\game\two worlds ii\twoworlds2.exe |
"{386BF904-73F6-4D16-87D5-EDD3F7794BA3}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{3D5CFA60-0B10-4426-BA75-FB72E2468825}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{3F80D16F-3183-4244-BF20-193B89FD3391}" = protocol=17 | dir=in | app=c:\program files\internet download manager\idman.exe |
"{46D23C70-4D79-4096-B46E-2ADE43FFB899}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{4D1832F0-D0E2-4818-A459-DD985E09E754}" = protocol=6 | dir=in | app=d:\software\game\the battle for middle-earth (tm) ii\game.dat |
"{542DCE84-093D-44B6-B244-C2B7F90B94E2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6187B5D7-F3D9-4F7E-A14D-6427C7F1B9ED}" = protocol=17 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.patch.exe |
"{656DA97D-190F-4FFF-A2A4-EA4569C42911}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{673CA61D-2AC1-49BA-99B1-3D919C7EECFE}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{687DD477-FB15-4881-BF49-A54DC82F3DB9}" = protocol=6 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.patch.exe |
"{689152B5-B5E0-4E37-8B59-D73ADEA8BB20}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{79C608B2-08C6-4D00-8C0E-BC297C7D0645}" = protocol=6 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.exe |
"{81B5A851-529F-4292-9AA6-01ECBA3AD455}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{8724B977-65BE-418A-8EBB-594072480243}" = protocol=6 | dir=in | app=c:\users\skola\appdata\local\google\chrome\application\chrome.exe |
"{8D691F98-BF6E-4570-972E-C388A3DFF5E1}" = protocol=17 | dir=in | app=d:\software\game\the battle for middle-earth (tm) ii\game.dat |
"{91DBBA41-A3E6-4E31-A58A-F84318F80B25}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{9656B902-B2E8-4600-93AD-9D184323765A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9A4AF6AA-E71B-4CC6-BAD4-49F5094EEB28}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{9DE0C4DE-3FB8-4A98-90D8-8B25F2B1C775}" = protocol=17 | dir=in | app=c:\users\skola\appdata\local\google\chrome\application\chrome.exe |
"{AC7A2B2C-E283-49C3-8FD0-67AA61B1818A}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{C0041EA1-6E19-4381-8CA1-740FD0237760}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{C4FE8320-BA93-4EC8-BB01-7E0239595DF4}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{CB3498D9-11A3-4B2B-B16F-29943E9F5817}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{CCEDD774-1907-48A9-9855-314FF79A8B88}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{CCF68161-2867-4074-A6AC-3716421411D7}" = protocol=17 | dir=in | app=d:\software\game\dungeon siege\dungeonsiege2.exe |
"{E8F677AE-CA33-4C4E-A2F5-BE4C71147A17}" = dir=in | app=c:\program files\msn messenger\msnmsgr.exe |
"{EDDBB7AC-6677-426F-9362-6F3255942E45}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{EF2DA712-4F80-46C5-BB73-3CE4F9F2CF21}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{F82BE8C3-D8C0-4E00-BF00-8714729ACF83}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{F8B55B6A-415A-4957-AF18-424FA4F3DDD2}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"TCP Query User{040A74E3-EFA7-406A-80D7-69000AB5178B}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{1D61F688-EC08-496D-9FEA-1ED3E9E78020}C:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{1F199ABE-2A67-4F5A-8FD2-643492CDCAF3}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{88CEB933-B237-418E-9798-6641817E4525}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"TCP Query User{B089ACAA-C962-48C2-852F-A255AB92BF3A}H:\software\game\dead space\dead space.exe" = protocol=6 | dir=in | app=h:\software\game\dead space\dead space.exe |
"TCP Query User{BFD050D4-387A-42FE-9E12-FB3C7DFDA55F}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{DB0673FA-1649-4434-AF20-DB18BA496C4A}F:\software\game\dead space\dead space.exe" = protocol=6 | dir=in | app=f:\software\game\dead space\dead space.exe |
"TCP Query User{E121C59F-ADA7-4E77-A9EF-5B97CFF51C33}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{F0B13501-AB65-4989-A566-288D08B49E80}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F7F613F1-AE60-4738-864F-990EDDA09623}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{07208177-448B-4FD0-B014-BFAA96E227A5}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{27F061D6-A41E-46DE-AB91-19CDFA85F33A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{4F93471B-442C-45B3-9211-84EE187E91B2}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{5188CC9D-6730-42E8-9546-984B7DC073C0}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{679934A0-D5F9-4DC1-9F86-349836C076D8}C:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{93ED224A-9D95-4FF3-9F21-EB4CCFC8667B}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A3812519-5A72-41DC-921E-632AEB803F10}H:\software\game\dead space\dead space.exe" = protocol=17 | dir=in | app=h:\software\game\dead space\dead space.exe |
"UDP Query User{A5BE0158-D1B5-4BD4-A6E0-6E5D3D178696}F:\software\game\dead space\dead space.exe" = protocol=17 | dir=in | app=f:\software\game\dead space\dead space.exe |
"UDP Query User{D4467F7A-DEC0-4C5C-AF2C-0DD5CE5D9409}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"UDP Query User{E93173A2-26C0-43D5-83A8-994D94DDBA42}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{004C5DA2-2051-4D25-94BA-51CF810C91EB}" = LightScribe System Software 1.12.37.1
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = HP Integrated Module with Bluetooth wireless technology 6.0.1.6200
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{051E7B99-6D35-4905-BAF3-740893EF657A}" = Total Overdose
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{126A6BAF-A4DC-4477-A6AD-7843A6EB40AD}" = Hanojské Veže
"{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"{154E4F71-DFC0-4B31-8D99-F97615031B02}" = HP Webcam Application
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{1D301950-EA2F-4882-9AA0-49467756842A}" = SweetIM for Messenger 3.3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{1F77C418-2C90-459C-BD33-B56A4182B9FA}" = System Requirements Lab CYRI
"{207A8D54-51C9-48B6-80E6-CBA5403B3ED4}" = Vista Default Settings
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US)
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 26
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = The Battle for Middle-earth (tm) II
"{2DBADDC3-574E-4CD1-A707-C8FC37CBA0F0}" = Sacred Gold
"{30A2A953-DEB1-466A-B660-F4399C7C6B9D}" = Roxio MyDVD
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{340F521E-3576-4E1A-B75C-EB0ACF751379}" = HP Wireless Assistant
"{34A350D1-64FB-36D8-9D0C-1CD8E392DBA5}" = Google Talk Plugin
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 D3
"{352AB263-2FF5-44DE-8DC7-ABD8BE81EF85}" = HP SoftPaq Download Manager
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP Webcam
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E8DE1A6-B365-4FF6-B917-2892A34990E8}" = LG USB Modem Drivers
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C203E35-B5C7-4E35-9834-619668C0FFEE}" = HP 3D DriveGuard
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Creator Business
"{5BFB956C-3AB9-492A-9E91-5D8C87DCC598}" = Paint.NET v3.5.1
"{5C85747A-91B6-4233-AAF8-063506D0FF4F}" = LG United Mobile Drivers
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{69333A04-5134-40A5-A055-9166A7AA1EC8}" =
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BBE2FF9-1EB8-43EE-9EBF-6FED52A3221A}" = Revelation Sight and Sound SK
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78BF8D44-E631-44AC-9EAD-33A28D0E0F1F}" = Revelation Natural Art SK
"{7D004944-C4F1-4C44-AAD4-E7F85190ED00}" = AVG 2012
"{819F6BAD-35DA-4094-BCE6-F57AACE116D1}" = ESU for Microsoft Vista SP1
"{82705358-3BD6-3CD5-AA9A-B8F058BE3A29}" = Google Talk Plugin
"{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}" = Nero BurnLite 10
"{8595812B-9104-4196-B629-FD298D819399}" = HP User Guides 0097
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830}" = Manhunt
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{8DF92D68-F8EE-4F9C-89A2-26254C1C4B6B}" = HP Help and Support
"{90120000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2007
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_STANDARD_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_STANDARD_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_STANDARD_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_STANDARD_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_STANDARD_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_STANDARD_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{98BD9EA5-2DF2-445C-8C8D-057F55B3C633}" = AVG 2012
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9E2CCD5E-1990-4EF2-9B61-32F0BBACC29B}" = HP Active Support Library
"{A1416622-0DDE-45B5-B06C-DFC3ED94C53B}" = Kmotr® II
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}" = Nero BurnLite 10
"{AC194855-F7AC-4D04-B4C9-07BA46FCB697}" = ActivClient 6.1 x86
"{AC76BA86-7AD7-1051-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Slovak
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{BF67F764-95B6-4360-BB57-B2E5AA6C814B}" = SweetIM Toolbar for Internet Explorer 4.0
"{CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}" = RapeLay
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DE15F0C0-108D-11D4-AF73-0000E21444C5}" = ResidentEvil3
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{EC877639-07AB-495C-BFD1-D63AF9140810}" = Roxio Activation Module
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator Business v10
"{EE2C1A5D-80B5-4303-B185-0AC6E8E850A2}" = Languages Online - Comprehension Task Maker 1.0
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F18DB86D-BC16-4E01-BCCE-63F62B931D82}" = InterVideo Register Manager
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}" = 32 Bit HP CIO Components Installer
"{FECEF9D2-9D3D-449B-9EA4-CFA775C99460}" = AuthenTec Fingerprint System
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AVG" = AVG 2012
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"facemoods" = Facemoods Toolbar
"Family Tree Builder" = MyHeritage Family Tree Builder
"FormatFactory" = FormatFactory 2.50
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"hotpot_is1" = HotPotatoes v 6.3.0.4
"HP QuickLook 2_is1" = HP QuickLook 2
"ImaginePlugin" = Imagine Plugin
"InstallShield_{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"Internet Download Manager" = Internet Download Manager
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.2.0
"LG PC Suite IV" = LG PC Suite IV
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 7.0.1 (x86 sk)" = Mozilla Firefox 7.0.1 (x86 sk)
"Pán Prsteňov: Bitka o Stredozem II SK" = Pán Prsteňov: Bitka o Stredozem II SK
"Plus500" = Plus500
"RazDvaTri_is1" = RazDvaTri 1.0 beta
"Recuva" = Recuva
"STANDARD" = Microsoft Office Standard 2007
"Steam App 48810" = Ship Simulator Extremes Demo
"SubtitleWorkshop" = Subtitle Workshop 2.51
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Talking Faces" = Talking Faces
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Tux Paint Stamps_is1" = Tux Paint Stamps 2009-06-28
"Tux Paint_is1" = Tux Paint 0.9.21
"Unlocker" = Unlocker 1.9.0
"UseNeXT_is1" = UseNeXT
"VLC media player" = VLC media player 1.1.0
"Ziacik v3.1" = Ziacik v3.1
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 25. 8. 2011 23:45:37 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Wow.exe, verzia 4.0.6.13623, časová značka 0x4d53542a,
chybový modul Wow.exe, verzia 4.0.6.13623, časová značka 0x4d53542a, kód výnimky
0xc0000005, odstup chyby 0x003efca0, identifikácia procesu 0xe84, čas spustenia
aplikácie 0x01cc63a24369cc8c.
Error - 26. 8. 2011 0:04:01 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia explorer.exe, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód
výnimky 0xc0000005, odstup chyby 0x00000000, identifikácia procesu 0x11c0, čas spustenia
aplikácie 0x01cc63a48b3a6efc.
Error - 26. 8. 2011 0:42:36 | Computer Name = UIPSUIP-Y4JHDKK | Source = WinMgmt | ID = 10
Description =
Error - 26. 8. 2011 4:32:09 | Computer Name = UIPSUIP-Y4JHDKK | Source = VSS | ID = 8193
Description =
Error - 26. 8. 2011 11:01:39 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul ntdll.dll, verzia 6.0.6002.18327, časová značka 0x4cb73436,
kód výnimky 0xc0000005, odstup chyby 0x0003de2d, identifikácia procesu 0xc3c, čas
spustenia aplikácie 0x01cc63abc1603f85.
Error - 26. 8. 2011 11:35:58 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia explorer.exe, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul ntdll.dll, verzia 6.0.6002.18327, časová značka 0x4cb73436,
kód výnimky 0xc0000005, odstup chyby 0x0003de2d, identifikácia procesu 0x1804, čas
spustenia aplikácie 0x01cc640116e8ca85.
Error - 26. 8. 2011 18:07:03 | Computer Name = UIPSUIP-Y4JHDKK | Source = VSS | ID = 8193
Description =
Error - 27. 8. 2011 10:50:35 | Computer Name = UIPSUIP-Y4JHDKK | Source = WinMgmt | ID = 10
Description =
Error - 27. 8. 2011 14:11:46 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHELL32.dll, verzia 6.0.6002.18393, časová značka 0x4d39b5c7,
kód výnimky 0xc0000005, odstup chyby 0x00149d5f, identifikácia procesu 0xb8c, čas
spustenia aplikácie 0x01cc64c88b481c21.
Error - 27. 8. 2011 14:24:56 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHELL32.dll, verzia 6.0.6002.18393, časová značka 0x4d39b5c7,
kód výnimky 0xc0000005, odstup chyby 0x0003d782, identifikácia procesu 0xb8c, čas
spustenia aplikácie 0x01cc64c88b481c21.
[ System Events ]
Error - 28. 10. 2011 20:09:04 | Computer Name = UIPSUIP-Y4JHDKK | Source = Service Control Manager | ID = 7011
Description =
Error - 28. 10. 2011 20:09:07 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 1:33:05 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 2:04:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 3:42:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = EventLog | ID = 6008
Description = The previous system shutdown at 9:37:15 on 29. 10. 2011 was unexpected.
Error - 29. 10. 2011 4:56:39 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 4:57:46 | Computer Name = UIPSUIP-Y4JHDKK | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 29. 10. 2011 8:55:28 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 14:47:12 | Computer Name = UIPSUIP-Y4JHDKK | Source = Service Control Manager | ID = 7011
Description =
Error - 29. 10. 2011 16:49:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
< End of report >
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1,93 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 61,20% Memory free
4,10 Gb Paging File | 2,87 Gb Available in Paging File | 70,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 50,00 Gb Total Space | 1,66 Gb Free Space | 3,33% Space Free | Partition Type: NTFS
Drive E: | 90,00 Gb Total Space | 70,70 Gb Free Space | 78,55% Space Free | Partition Type: NTFS
Drive I: | 465,76 Gb Total Space | 135,38 Gb Free Space | 29,07% Space Free | Partition Type: NTFS
Computer Name: UIPSUIP-Y4JHDKK | User Name: Skola | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{013C15AD-342D-4FE5-B7A8-831741B337E1}" = lport=445 | protocol=6 | dir=in | app=system |
"{262AB33D-2B61-4301-A450-5D719A45F861}" = lport=138 | protocol=17 | dir=in | app=system |
"{496AC6CF-6BD2-4924-939D-E82C2138009E}" = lport=2869 | protocol=6 | dir=in | app=system |
"{66587AE8-5610-4741-AD90-8370FD60ECC7}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{74D875D3-017E-4A04-BFD8-B880C67F9B71}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{78ABBCF1-880B-413A-9A19-445D9915CD98}" = rport=137 | protocol=17 | dir=out | app=system |
"{7DD0E5E7-CF9D-4685-B996-DA759624A0B0}" = rport=139 | protocol=6 | dir=out | app=system |
"{80798403-D0C6-484A-B28B-6D78AAF3C524}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8BBB5454-8EC0-4047-897C-AE19829E4B53}" = lport=139 | protocol=6 | dir=in | app=system |
"{910D6100-BD93-49FC-9272-0A4EC563A754}" = lport=137 | protocol=17 | dir=in | app=system |
"{CE7A2666-948F-4FC0-B018-2BD7F23006CC}" = rport=445 | protocol=6 | dir=out | app=system |
"{E6B1ACDD-6B7C-4542-9D67-A58115D9D6C7}" = rport=138 | protocol=17 | dir=out | app=system |
"{EDEECEAE-C2E7-469B-9988-4DA0BA49DE59}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01A02DCF-5E43-4133-97D7-F13AAF4A74F0}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{121BC6A9-E281-425B-B85D-4A80D8C6C6FD}" = protocol=6 | dir=in | app=f:\software\game\two worlds ii\twoworlds2.exe |
"{1D396EBD-6616-416B-9F29-B55DDFD3C707}" = protocol=6 | dir=in | app=h:\software\game\gta\eflc.exe |
"{20C27FA5-291A-4AB9-832B-566DB5756957}" = protocol=6 | dir=in | app=d:\software\game\dungeon siege\dungeonsiege2.exe |
"{27EE439E-0868-4050-B3E7-180542E6555F}" = protocol=17 | dir=in | app=h:\software\game\gta\eflc.exe |
"{2AF0A522-A48A-41BB-B57A-9CE61C21E85E}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{2BEB401D-874E-46D4-8264-3902188798DC}" = protocol=6 | dir=in | app=c:\program files\internet download manager\idman.exe |
"{2FDB98E9-1121-44F2-BD73-B0F2F4C5AD8A}" = protocol=17 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.exe |
"{35C05E26-CD95-4D95-80F9-A7C1963CD037}" = protocol=17 | dir=in | app=f:\software\game\two worlds ii\twoworlds2.exe |
"{386BF904-73F6-4D16-87D5-EDD3F7794BA3}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\shipsimextremesdemo\steam.exe |
"{3D5CFA60-0B10-4426-BA75-FB72E2468825}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{3F80D16F-3183-4244-BF20-193B89FD3391}" = protocol=17 | dir=in | app=c:\program files\internet download manager\idman.exe |
"{46D23C70-4D79-4096-B46E-2ADE43FFB899}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{4D1832F0-D0E2-4818-A459-DD985E09E754}" = protocol=6 | dir=in | app=d:\software\game\the battle for middle-earth (tm) ii\game.dat |
"{542DCE84-093D-44B6-B244-C2B7F90B94E2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6187B5D7-F3D9-4F7E-A14D-6427C7F1B9ED}" = protocol=17 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.patch.exe |
"{656DA97D-190F-4FFF-A2A4-EA4569C42911}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{673CA61D-2AC1-49BA-99B1-3D919C7EECFE}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{687DD477-FB15-4881-BF49-A54DC82F3DB9}" = protocol=6 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.patch.exe |
"{689152B5-B5E0-4E37-8B59-D73ADEA8BB20}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{79C608B2-08C6-4D00-8C0E-BC297C7D0645}" = protocol=6 | dir=in | app=d:\software\game\wow\world of warcraft\launcher.exe |
"{81B5A851-529F-4292-9AA6-01ECBA3AD455}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{8724B977-65BE-418A-8EBB-594072480243}" = protocol=6 | dir=in | app=c:\users\skola\appdata\local\google\chrome\application\chrome.exe |
"{8D691F98-BF6E-4570-972E-C388A3DFF5E1}" = protocol=17 | dir=in | app=d:\software\game\the battle for middle-earth (tm) ii\game.dat |
"{91DBBA41-A3E6-4E31-A58A-F84318F80B25}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{9656B902-B2E8-4600-93AD-9D184323765A}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{9A4AF6AA-E71B-4CC6-BAD4-49F5094EEB28}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{9DE0C4DE-3FB8-4A98-90D8-8B25F2B1C775}" = protocol=17 | dir=in | app=c:\users\skola\appdata\local\google\chrome\application\chrome.exe |
"{AC7A2B2C-E283-49C3-8FD0-67AA61B1818A}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{C0041EA1-6E19-4381-8CA1-740FD0237760}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{C4FE8320-BA93-4EC8-BB01-7E0239595DF4}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{CB3498D9-11A3-4B2B-B16F-29943E9F5817}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{CCEDD774-1907-48A9-9855-314FF79A8B88}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{CCF68161-2867-4074-A6AC-3716421411D7}" = protocol=17 | dir=in | app=d:\software\game\dungeon siege\dungeonsiege2.exe |
"{E8F677AE-CA33-4C4E-A2F5-BE4C71147A17}" = dir=in | app=c:\program files\msn messenger\msnmsgr.exe |
"{EDDBB7AC-6677-426F-9362-6F3255942E45}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe |
"{EF2DA712-4F80-46C5-BB73-3CE4F9F2CF21}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe |
"{F82BE8C3-D8C0-4E00-BF00-8714729ACF83}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{F8B55B6A-415A-4957-AF18-424FA4F3DDD2}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"TCP Query User{040A74E3-EFA7-406A-80D7-69000AB5178B}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{1D61F688-EC08-496D-9FEA-1ED3E9E78020}C:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{1F199ABE-2A67-4F5A-8FD2-643492CDCAF3}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{88CEB933-B237-418E-9798-6641817E4525}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"TCP Query User{B089ACAA-C962-48C2-852F-A255AB92BF3A}H:\software\game\dead space\dead space.exe" = protocol=6 | dir=in | app=h:\software\game\dead space\dead space.exe |
"TCP Query User{BFD050D4-387A-42FE-9E12-FB3C7DFDA55F}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{DB0673FA-1649-4434-AF20-DB18BA496C4A}F:\software\game\dead space\dead space.exe" = protocol=6 | dir=in | app=f:\software\game\dead space\dead space.exe |
"TCP Query User{E121C59F-ADA7-4E77-A9EF-5B97CFF51C33}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{F0B13501-AB65-4989-A566-288D08B49E80}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{F7F613F1-AE60-4738-864F-990EDDA09623}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{07208177-448B-4FD0-B014-BFAA96E227A5}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{27F061D6-A41E-46DE-AB91-19CDFA85F33A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{4F93471B-442C-45B3-9211-84EE187E91B2}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{5188CC9D-6730-42E8-9546-984B7DC073C0}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{679934A0-D5F9-4DC1-9F86-349836C076D8}C:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{93ED224A-9D95-4FF3-9F21-EB4CCFC8667B}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A3812519-5A72-41DC-921E-632AEB803F10}H:\software\game\dead space\dead space.exe" = protocol=17 | dir=in | app=h:\software\game\dead space\dead space.exe |
"UDP Query User{A5BE0158-D1B5-4BD4-A6E0-6E5D3D178696}F:\software\game\dead space\dead space.exe" = protocol=17 | dir=in | app=f:\software\game\dead space\dead space.exe |
"UDP Query User{D4467F7A-DEC0-4C5C-AF2C-0DD5CE5D9409}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"UDP Query User{E93173A2-26C0-43D5-83A8-994D94DDBA42}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{004C5DA2-2051-4D25-94BA-51CF810C91EB}" = LightScribe System Software 1.12.37.1
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = HP Integrated Module with Bluetooth wireless technology 6.0.1.6200
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{051E7B99-6D35-4905-BAF3-740893EF657A}" = Total Overdose
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{126A6BAF-A4DC-4477-A6AD-7843A6EB40AD}" = Hanojské Veže
"{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"{154E4F71-DFC0-4B31-8D99-F97615031B02}" = HP Webcam Application
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{1D301950-EA2F-4882-9AA0-49467756842A}" = SweetIM for Messenger 3.3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{1F77C418-2C90-459C-BD33-B56A4182B9FA}" = System Requirements Lab CYRI
"{207A8D54-51C9-48B6-80E6-CBA5403B3ED4}" = Vista Default Settings
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US)
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 26
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = The Battle for Middle-earth (tm) II
"{2DBADDC3-574E-4CD1-A707-C8FC37CBA0F0}" = Sacred Gold
"{30A2A953-DEB1-466A-B660-F4399C7C6B9D}" = Roxio MyDVD
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{340F521E-3576-4E1A-B75C-EB0ACF751379}" = HP Wireless Assistant
"{34A350D1-64FB-36D8-9D0C-1CD8E392DBA5}" = Google Talk Plugin
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 D3
"{352AB263-2FF5-44DE-8DC7-ABD8BE81EF85}" = HP SoftPaq Download Manager
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP Webcam
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E8DE1A6-B365-4FF6-B917-2892A34990E8}" = LG USB Modem Drivers
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C203E35-B5C7-4E35-9834-619668C0FFEE}" = HP 3D DriveGuard
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{537BF16E-7412-448C-95D8-846E85A1D817}" = Roxio Creator Business
"{5BFB956C-3AB9-492A-9E91-5D8C87DCC598}" = Paint.NET v3.5.1
"{5C85747A-91B6-4233-AAF8-063506D0FF4F}" = LG United Mobile Drivers
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{69333A04-5134-40A5-A055-9166A7AA1EC8}" =
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BBE2FF9-1EB8-43EE-9EBF-6FED52A3221A}" = Revelation Sight and Sound SK
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78BF8D44-E631-44AC-9EAD-33A28D0E0F1F}" = Revelation Natural Art SK
"{7D004944-C4F1-4C44-AAD4-E7F85190ED00}" = AVG 2012
"{819F6BAD-35DA-4094-BCE6-F57AACE116D1}" = ESU for Microsoft Vista SP1
"{82705358-3BD6-3CD5-AA9A-B8F058BE3A29}" = Google Talk Plugin
"{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}" = Nero BurnLite 10
"{8595812B-9104-4196-B629-FD298D819399}" = HP User Guides 0097
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830}" = Manhunt
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{8DF92D68-F8EE-4F9C-89A2-26254C1C4B6B}" = HP Help and Support
"{90120000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2007
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_STANDARD_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_STANDARD_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_STANDARD_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_STANDARD_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_STANDARD_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_STANDARD_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{98BD9EA5-2DF2-445C-8C8D-057F55B3C633}" = AVG 2012
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9E2CCD5E-1990-4EF2-9B61-32F0BBACC29B}" = HP Active Support Library
"{A1416622-0DDE-45B5-B06C-DFC3ED94C53B}" = Kmotr® II
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}" = Nero BurnLite 10
"{AC194855-F7AC-4D04-B4C9-07BA46FCB697}" = ActivClient 6.1 x86
"{AC76BA86-7AD7-1051-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Slovak
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
"{BF67F764-95B6-4360-BB57-B2E5AA6C814B}" = SweetIM Toolbar for Internet Explorer 4.0
"{CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}" = RapeLay
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{DE15F0C0-108D-11D4-AF73-0000E21444C5}" = ResidentEvil3
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{EC877639-07AB-495C-BFD1-D63AF9140810}" = Roxio Activation Module
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator Business v10
"{EE2C1A5D-80B5-4303-B185-0AC6E8E850A2}" = Languages Online - Comprehension Task Maker 1.0
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F18DB86D-BC16-4E01-BCCE-63F62B931D82}" = InterVideo Register Manager
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}" = 32 Bit HP CIO Components Installer
"{FECEF9D2-9D3D-449B-9EA4-CFA775C99460}" = AuthenTec Fingerprint System
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AVG" = AVG 2012
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"facemoods" = Facemoods Toolbar
"Family Tree Builder" = MyHeritage Family Tree Builder
"FormatFactory" = FormatFactory 2.50
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"hotpot_is1" = HotPotatoes v 6.3.0.4
"HP QuickLook 2_is1" = HP QuickLook 2
"ImaginePlugin" = Imagine Plugin
"InstallShield_{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"Internet Download Manager" = Internet Download Manager
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.2.0
"LG PC Suite IV" = LG PC Suite IV
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 7.0.1 (x86 sk)" = Mozilla Firefox 7.0.1 (x86 sk)
"Pán Prsteňov: Bitka o Stredozem II SK" = Pán Prsteňov: Bitka o Stredozem II SK
"Plus500" = Plus500
"RazDvaTri_is1" = RazDvaTri 1.0 beta
"Recuva" = Recuva
"STANDARD" = Microsoft Office Standard 2007
"Steam App 48810" = Ship Simulator Extremes Demo
"SubtitleWorkshop" = Subtitle Workshop 2.51
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Talking Faces" = Talking Faces
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Tux Paint Stamps_is1" = Tux Paint Stamps 2009-06-28
"Tux Paint_is1" = Tux Paint 0.9.21
"Unlocker" = Unlocker 1.9.0
"UseNeXT_is1" = UseNeXT
"VLC media player" = VLC media player 1.1.0
"Ziacik v3.1" = Ziacik v3.1
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 25. 8. 2011 23:45:37 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Wow.exe, verzia 4.0.6.13623, časová značka 0x4d53542a,
chybový modul Wow.exe, verzia 4.0.6.13623, časová značka 0x4d53542a, kód výnimky
0xc0000005, odstup chyby 0x003efca0, identifikácia procesu 0xe84, čas spustenia
aplikácie 0x01cc63a24369cc8c.
Error - 26. 8. 2011 0:04:01 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia explorer.exe, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód
výnimky 0xc0000005, odstup chyby 0x00000000, identifikácia procesu 0x11c0, čas spustenia
aplikácie 0x01cc63a48b3a6efc.
Error - 26. 8. 2011 0:42:36 | Computer Name = UIPSUIP-Y4JHDKK | Source = WinMgmt | ID = 10
Description =
Error - 26. 8. 2011 4:32:09 | Computer Name = UIPSUIP-Y4JHDKK | Source = VSS | ID = 8193
Description =
Error - 26. 8. 2011 11:01:39 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul ntdll.dll, verzia 6.0.6002.18327, časová značka 0x4cb73436,
kód výnimky 0xc0000005, odstup chyby 0x0003de2d, identifikácia procesu 0xc3c, čas
spustenia aplikácie 0x01cc63abc1603f85.
Error - 26. 8. 2011 11:35:58 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia explorer.exe, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul ntdll.dll, verzia 6.0.6002.18327, časová značka 0x4cb73436,
kód výnimky 0xc0000005, odstup chyby 0x0003de2d, identifikácia procesu 0x1804, čas
spustenia aplikácie 0x01cc640116e8ca85.
Error - 26. 8. 2011 18:07:03 | Computer Name = UIPSUIP-Y4JHDKK | Source = VSS | ID = 8193
Description =
Error - 27. 8. 2011 10:50:35 | Computer Name = UIPSUIP-Y4JHDKK | Source = WinMgmt | ID = 10
Description =
Error - 27. 8. 2011 14:11:46 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHELL32.dll, verzia 6.0.6002.18393, časová značka 0x4d39b5c7,
kód výnimky 0xc0000005, odstup chyby 0x00149d5f, identifikácia procesu 0xb8c, čas
spustenia aplikácie 0x01cc64c88b481c21.
Error - 27. 8. 2011 14:24:56 | Computer Name = UIPSUIP-Y4JHDKK | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHELL32.dll, verzia 6.0.6002.18393, časová značka 0x4d39b5c7,
kód výnimky 0xc0000005, odstup chyby 0x0003d782, identifikácia procesu 0xb8c, čas
spustenia aplikácie 0x01cc64c88b481c21.
[ System Events ]
Error - 28. 10. 2011 20:09:04 | Computer Name = UIPSUIP-Y4JHDKK | Source = Service Control Manager | ID = 7011
Description =
Error - 28. 10. 2011 20:09:07 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 1:33:05 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 2:04:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 3:42:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = EventLog | ID = 6008
Description = The previous system shutdown at 9:37:15 on 29. 10. 2011 was unexpected.
Error - 29. 10. 2011 4:56:39 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 4:57:46 | Computer Name = UIPSUIP-Y4JHDKK | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 29. 10. 2011 8:55:28 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
Error - 29. 10. 2011 14:47:12 | Computer Name = UIPSUIP-Y4JHDKK | Source = Service Control Manager | ID = 7011
Description =
Error - 29. 10. 2011 16:49:17 | Computer Name = UIPSUIP-Y4JHDKK | Source = BTHUSB | ID = 327697
Description = Miestny adaptér Bluetooth zlyhal bližšie neurčeným spôsobom a nebude
sa používať. Ovládač bol odstránený z pamäte.
< End of report >
Re: Preventivní kontrola ntb
OTL logfile created on: 30. 10. 2011 2:27:14 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1,93 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 61,20% Memory free
4,10 Gb Paging File | 2,87 Gb Available in Paging File | 70,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 50,00 Gb Total Space | 1,66 Gb Free Space | 3,33% Space Free | Partition Type: NTFS
Drive E: | 90,00 Gb Total Space | 70,70 Gb Free Space | 78,55% Space Free | Partition Type: NTFS
Drive I: | 465,76 Gb Total Space | 135,38 Gb Free Space | 29,07% Space Free | Partition Type: NTFS
Computer Name: UIPSUIP-Y4JHDKK | User Name: Skola | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011/10/29 07:29:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
PRC - [2011/10/23 04:51:31 | 000,218,440 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2011/09/30 22:29:05 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
PRC - [2011/09/30 20:43:33 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/09/23 05:31:50 | 002,404,704 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2011/09/21 18:53:12 | 000,973,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2011/09/13 05:32:40 | 001,227,616 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2011/09/12 05:23:46 | 005,265,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
PRC - [2011/09/09 05:15:32 | 000,246,600 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
PRC - [2011/09/08 19:53:26 | 000,743,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2011/08/15 05:21:40 | 000,337,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2011/08/02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2011/07/14 02:50:37 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
PRC - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010/11/23 17:15:38 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/11/23 17:13:50 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010/10/13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2010/05/25 15:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\IDManager\IEMonitor.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/10 00:09:08 | 001,168,632 | ---- | M] (AuthenTec, Inc.) -- c:\Program Files\Fingerprint Sensor\AtService.exe
PRC - [2008/04/18 14:54:02 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/18 14:53:58 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/03/31 22:41:22 | 000,091,440 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
PRC - [2007/12/11 13:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2007/10/19 08:28:24 | 000,086,016 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEADISRV.EXE
PRC - [2007/05/16 00:08:40 | 000,182,576 | ---- | M] (ActivIdentity) -- c:\Program Files\ActivIdentity\ActivClient\accoca.exe
PRC - [2007/05/16 00:08:38 | 000,095,024 | ---- | M] (ActivIdentity) -- c:\Program Files\ActivIdentity\ActivClient\acevents.exe
PRC - [2007/05/16 00:08:08 | 000,293,168 | ---- | M] (ActivIdentity) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
PRC - [2007/01/05 03:48:52 | 000,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
========== Modules (No Company Name) ==========
MOD - [2011/10/23 04:51:31 | 000,218,440 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2010/07/04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2007/08/14 21:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007/07/12 21:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007/07/12 21:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
========== Win32 Services (SafeList) ==========
SRV - [2011/10/15 07:27:56 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/09/12 05:23:46 | 005,265,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/09/09 05:15:32 | 000,246,600 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe -- (vToolbarUpdater)
SRV - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/07/14 02:50:37 | 000,058,288 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\System32\rpcnet.exe -- (rpcnet) Remote Procedure Call (RPC)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010/11/23 17:13:50 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/11/23 17:11:36 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2008/05/10 00:09:08 | 001,168,632 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- c:\Program Files\Fingerprint Sensor\AtService.exe -- (ATService)
SRV - [2008/04/18 14:54:02 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/04/08 13:12:50 | 001,112,560 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2008/01/21 03:23:59 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/11 13:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007/10/19 08:28:24 | 000,086,016 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEADISRV.EXE -- (AEADIFilters)
SRV - [2007/05/16 00:08:40 | 000,182,576 | ---- | M] (ActivIdentity) [Auto | Running] -- c:\Program Files\ActivIdentity\ActivClient\accoca.exe -- (accoca)
SRV - [2007/01/05 03:48:52 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
========== Driver Services (SafeList) ==========
DRV - [2011/09/13 05:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/08/13 07:11:07 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011/08/08 07:35:04 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2011/08/08 07:35:03 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2011/08/08 05:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/07/11 00:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/07/11 00:14:02 | 000,024,272 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/07/11 00:14:02 | 000,016,720 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/07/11 00:14:00 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/07/11 00:13:58 | 000,134,736 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/07/11 00:13:46 | 000,229,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/03/28 18:46:40 | 000,086,792 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2010/10/07 12:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010/01/21 01:59:58 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2010/01/21 01:59:56 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2010/01/21 01:59:56 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2009/03/27 05:48:22 | 001,810,992 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2008/11/21 20:53:40 | 001,204,128 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2008/11/17 14:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)
DRV - [2008/05/13 16:30:34 | 000,475,520 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2008/04/07 19:13:46 | 000,025,448 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2008/04/07 19:13:42 | 000,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2008/01/21 03:23:51 | 000,045,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2007/06/19 01:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/06/28 18:54:00 | 000,009,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicla& ... Terms}&f=4
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid=%7Be9 ... &sap=ku&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}: C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ [2010/10/10 15:09:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2011/10/25 08:16:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/30 20:43:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/27 20:32:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM\idmmzcc3 [2011/09/04 20:12:42 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM\idmmzcc3 [2011/09/04 20:12:42 | 000,000,000 | ---D | M]
[2011/07/23 06:53:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Extensions
[2011/10/10 05:27:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Firefox\Profiles\ovt6nfjm.default\extensions
[2011/10/10 05:27:14 | 000,000,000 | ---D | M] (AVG Security Toolbar) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar
[2011/09/09 05:15:29 | 000,003,674 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\searchplugins\avg-secure-search.xml
[2011/08/08 20:40:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/10/11 19:22:24 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/08/08 20:40:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/07/30 05:57:59 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de
[2011/10/25 08:16:32 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX4
[2010/11/19 13:50:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/09/30 20:43:34 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/05/04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/10/18 19:11:02 | 000,139,776 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npImagine.dll
[2011/09/30 20:43:31 | 000,001,583 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
[2011/09/30 20:43:31 | 000,001,380 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
[2011/09/30 20:43:31 | 000,001,479 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
[2011/03/23 16:14:59 | 000,002,051 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchstonicla.xml
[2011/09/30 20:43:31 | 000,001,473 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
[2011/09/30 20:43:31 | 000,001,104 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sk.xml
[2011/09/30 20:43:31 | 000,000,830 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\IDManager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodsTlbr.dll (facemoods.com)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [accrdsub] c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe (ActivIdentity)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [Family Tree Builder Update] E:\MyHeritage\Bin\FTBCheckUpdates.exe (MyHeritage)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [IDMan] C:\Program Files\IDManager\IDMan.exe (Tonec Inc.)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\IDManager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\IDManager\IEExt.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{72EFC2D0-4B03-405F-B010-CDA0DD8F6296}: DhcpNameServer = 192.168.3.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3f6a14c8-d440-11df-9f31-0025b36b515d}\Shell - "" = AutoRun
O33 - MountPoints2\{3f6a14c8-d440-11df-9f31-0025b36b515d}\Shell\AutoRun\command - "" = J:\LGAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.ac3acm - C:\windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\windows\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\windows\System32\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\windows\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011/10/29 07:28:57 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
[2011/10/28 04:14:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2011/10/28 04:11:16 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Oblivion
[2011/10/28 04:11:16 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\My Games
[2011/10/28 02:34:26 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Media Player Classic
[2011/10/26 14:44:01 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\gothic3
[2011/10/26 13:17:48 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\vlc
[2011/10/26 13:17:48 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\dvdcss
[2011/10/26 03:08:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Adobe
[2011/10/26 03:06:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Macromedia
[2011/10/26 03:06:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Adobe
[2011/10/26 03:00:01 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/10/26 02:29:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BioWare
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\MyHeritage
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\ProgramData\MyHeritage
[2011/10/25 23:09:57 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
[2011/10/25 23:09:49 | 000,372,736 | ---- | C] (Intel Corporation) -- C:\windows\System32\ijl15.dll
[2011/10/25 23:09:49 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msmapi32.ocx
[2011/10/25 23:09:49 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/25 08:39:49 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\28050
[2011/10/23 05:53:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs
[2011/10/23 04:51:31 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2011/03/08 12:42:28 | 000,250,544 | ---- | C] (KeyWorks Software) -- C:\Program Files\Common Files\keyhelp.ocx
[2009/06/05 09:13:05 | 000,180,224 | ---- | C] ( ) -- C:\windows\System32\rsnp2uvc.dll
[2009/03/27 05:47:16 | 000,195,120 | ---- | C] ( ) -- C:\windows\System32\csnp2uvc.dll
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp files -> C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp -> ]
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19154)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1,93 Gb Total Physical Memory | 1,18 Gb Available Physical Memory | 61,20% Memory free
4,10 Gb Paging File | 2,87 Gb Available in Paging File | 70,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 50,00 Gb Total Space | 1,66 Gb Free Space | 3,33% Space Free | Partition Type: NTFS
Drive E: | 90,00 Gb Total Space | 70,70 Gb Free Space | 78,55% Space Free | Partition Type: NTFS
Drive I: | 465,76 Gb Total Space | 135,38 Gb Free Space | 29,07% Space Free | Partition Type: NTFS
Computer Name: UIPSUIP-Y4JHDKK | User Name: Skola | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011/10/29 07:29:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
PRC - [2011/10/23 04:51:31 | 000,218,440 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2011/09/30 22:29:05 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
PRC - [2011/09/30 20:43:33 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/09/23 05:31:50 | 002,404,704 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2011/09/21 18:53:12 | 000,973,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2011/09/13 05:32:40 | 001,227,616 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2011/09/12 05:23:46 | 005,265,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
PRC - [2011/09/09 05:15:32 | 000,246,600 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
PRC - [2011/09/08 19:53:26 | 000,743,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2011/08/15 05:21:40 | 000,337,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2011/08/02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2011/07/14 02:50:37 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\Windows\System32\rpcnet.exe
PRC - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010/11/23 17:15:38 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/11/23 17:13:50 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010/10/13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2010/05/25 15:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\IDManager\IEMonitor.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/10 00:09:08 | 001,168,632 | ---- | M] (AuthenTec, Inc.) -- c:\Program Files\Fingerprint Sensor\AtService.exe
PRC - [2008/04/18 14:54:02 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/18 14:53:58 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/03/31 22:41:22 | 000,091,440 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
PRC - [2007/12/11 13:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2007/10/19 08:28:24 | 000,086,016 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEADISRV.EXE
PRC - [2007/05/16 00:08:40 | 000,182,576 | ---- | M] (ActivIdentity) -- c:\Program Files\ActivIdentity\ActivClient\accoca.exe
PRC - [2007/05/16 00:08:38 | 000,095,024 | ---- | M] (ActivIdentity) -- c:\Program Files\ActivIdentity\ActivClient\acevents.exe
PRC - [2007/05/16 00:08:08 | 000,293,168 | ---- | M] (ActivIdentity) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
PRC - [2007/01/05 03:48:52 | 000,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
========== Modules (No Company Name) ==========
MOD - [2011/10/23 04:51:31 | 000,218,440 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2010/07/04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2007/08/14 21:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007/07/12 21:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007/07/12 21:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
========== Win32 Services (SafeList) ==========
SRV - [2011/10/15 07:27:56 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/09/12 05:23:46 | 005,265,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/09/09 05:15:32 | 000,246,600 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe -- (vToolbarUpdater)
SRV - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/07/14 02:50:37 | 000,058,288 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\System32\rpcnet.exe -- (rpcnet) Remote Procedure Call (RPC)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010/11/23 17:13:50 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/11/23 17:11:36 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2008/05/10 00:09:08 | 001,168,632 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- c:\Program Files\Fingerprint Sensor\AtService.exe -- (ATService)
SRV - [2008/04/18 14:54:02 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/04/08 13:12:50 | 001,112,560 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2008/01/21 03:23:59 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/11 13:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007/10/19 08:28:24 | 000,086,016 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEADISRV.EXE -- (AEADIFilters)
SRV - [2007/05/16 00:08:40 | 000,182,576 | ---- | M] (ActivIdentity) [Auto | Running] -- c:\Program Files\ActivIdentity\ActivClient\accoca.exe -- (accoca)
SRV - [2007/01/05 03:48:52 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
========== Driver Services (SafeList) ==========
DRV - [2011/09/13 05:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/08/13 07:11:07 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011/08/08 07:35:04 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2011/08/08 07:35:03 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2011/08/08 05:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/07/11 00:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/07/11 00:14:02 | 000,024,272 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/07/11 00:14:02 | 000,016,720 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/07/11 00:14:00 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/07/11 00:13:58 | 000,134,736 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/07/11 00:13:46 | 000,229,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/03/28 18:46:40 | 000,086,792 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2010/10/07 12:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010/01/21 01:59:58 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2010/01/21 01:59:56 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2010/01/21 01:59:56 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2009/03/27 05:48:22 | 001,810,992 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2008/11/21 20:53:40 | 001,204,128 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2008/11/17 14:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)
DRV - [2008/05/13 16:30:34 | 000,475,520 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2008/04/07 19:13:46 | 000,025,448 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2008/04/07 19:13:42 | 000,034,664 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2008/01/21 03:23:51 | 000,045,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2007/06/19 01:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/06/28 18:54:00 | 000,009,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicla& ... Terms}&f=4
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid=%7Be9 ... &sap=ku&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}: C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ [2010/10/10 15:09:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2011/10/25 08:16:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/30 20:43:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/27 20:32:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM\idmmzcc3 [2011/09/04 20:12:42 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM\idmmzcc3 [2011/09/04 20:12:42 | 000,000,000 | ---D | M]
[2011/07/23 06:53:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Extensions
[2011/10/10 05:27:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Firefox\Profiles\ovt6nfjm.default\extensions
[2011/10/10 05:27:14 | 000,000,000 | ---D | M] (AVG Security Toolbar) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar
[2011/09/09 05:15:29 | 000,003,674 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\searchplugins\avg-secure-search.xml
[2011/08/08 20:40:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/10/11 19:22:24 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/08/08 20:40:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/07/30 05:57:59 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\quickstores@quickstores.de
[2011/10/25 08:16:32 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX4
[2010/11/19 13:50:48 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/09/30 20:43:34 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/05/04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/10/18 19:11:02 | 000,139,776 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npImagine.dll
[2011/09/30 20:43:31 | 000,001,583 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
[2011/09/30 20:43:31 | 000,001,380 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
[2011/09/30 20:43:31 | 000,001,479 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
[2011/03/23 16:14:59 | 000,002,051 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrchstonicla.xml
[2011/09/30 20:43:31 | 000,001,473 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
[2011/09/30 20:43:31 | 000,001,104 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sk.xml
[2011/09/30 20:43:31 | 000,000,830 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\IDManager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodsTlbr.dll (facemoods.com)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [accrdsub] c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe (ActivIdentity)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [Family Tree Builder Update] E:\MyHeritage\Bin\FTBCheckUpdates.exe (MyHeritage)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [IDMan] C:\Program Files\IDManager\IDMan.exe (Tonec Inc.)
O4 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008..\Run: [WindowsWelcomeCenter] C:\windows\System32\oobefldr.dll (Microsoft Corporation)
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\IDManager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\IDManager\IEExt.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{72EFC2D0-4B03-405F-B010-CDA0DD8F6296}: DhcpNameServer = 192.168.3.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3f6a14c8-d440-11df-9f31-0025b36b515d}\Shell - "" = AutoRun
O33 - MountPoints2\{3f6a14c8-d440-11df-9f31-0025b36b515d}\Shell\AutoRun\command - "" = J:\LGAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.ac3acm - C:\windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\windows\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\windows\System32\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\windows\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011/10/29 07:28:57 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
[2011/10/28 04:14:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2011/10/28 04:11:16 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Oblivion
[2011/10/28 04:11:16 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\My Games
[2011/10/28 02:34:26 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Media Player Classic
[2011/10/26 14:44:01 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\gothic3
[2011/10/26 13:17:48 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\vlc
[2011/10/26 13:17:48 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\dvdcss
[2011/10/26 03:08:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Adobe
[2011/10/26 03:06:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Macromedia
[2011/10/26 03:06:56 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Adobe
[2011/10/26 03:00:01 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/10/26 02:29:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BioWare
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Documents\MyHeritage
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:11:04 | 000,000,000 | ---D | C] -- C:\ProgramData\MyHeritage
[2011/10/25 23:09:57 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
[2011/10/25 23:09:49 | 000,372,736 | ---- | C] (Intel Corporation) -- C:\windows\System32\ijl15.dll
[2011/10/25 23:09:49 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msmapi32.ocx
[2011/10/25 23:09:49 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/25 08:39:49 | 000,000,000 | ---D | C] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\28050
[2011/10/23 05:53:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs
[2011/10/23 04:51:31 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2011/03/08 12:42:28 | 000,250,544 | ---- | C] (KeyWorks Software) -- C:\Program Files\Common Files\keyhelp.ocx
[2009/06/05 09:13:05 | 000,180,224 | ---- | C] ( ) -- C:\windows\System32\rsnp2uvc.dll
[2009/03/27 05:47:16 | 000,195,120 | ---- | C] ( ) -- C:\windows\System32\csnp2uvc.dll
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp files -> C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp -> ]
Re: Preventivní kontrola ntb
========== Files - Modified Within 7 Days ==========
[2011/10/30 02:33:48 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job
[2011/10/30 02:31:15 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/30 02:06:57 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job
[2011/10/30 02:05:57 | 000,000,472 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job
[2011/10/30 02:05:57 | 000,000,436 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job
[2011/10/30 02:04:57 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job
[2011/10/30 01:46:00 | 000,001,060 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006UA.job
[2011/10/30 01:45:42 | 000,179,200 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/30 01:32:00 | 000,000,978 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008UA.job
[2011/10/30 01:32:00 | 000,000,926 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008Core.job
[2011/10/30 01:30:00 | 000,000,958 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007UA.job
[2011/10/30 01:02:02 | 000,000,922 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/30 00:42:21 | 000,003,216 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/30 00:42:21 | 000,003,216 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/29 21:49:20 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2011/10/29 21:49:09 | 000,017,408 | ---- | M] () -- C:\windows\System32\rpcnetp.exe
[2011/10/29 20:01:33 | 000,641,562 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/10/29 20:01:33 | 000,122,868 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/10/29 20:01:33 | 000,092,942 | ---- | M] () -- C:\windows\System32\perfh01B.dat
[2011/10/29 20:01:33 | 000,029,660 | ---- | M] () -- C:\windows\System32\perfc01B.dat
[2011/10/29 17:47:00 | 000,001,008 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006Core.job
[2011/10/29 17:11:03 | 107,833,782 | ---- | M] () -- C:\windows\System32\drivers\AVG\incavi.avm
[2011/10/29 17:10:24 | 000,348,155 | ---- | M] () -- C:\windows\System32\drivers\AVG\iavichjg.avm
[2011/10/29 13:46:37 | 000,000,860 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\HP_Webcam.exe - odkaz.lnk
[2011/10/29 13:20:05 | 020,293,194 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\shopping_teaser_3d_trailer_640x360_sk.mp4
[2011/10/29 08:43:01 | 000,000,918 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/29 08:42:35 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\windows\System32\rpcnet.dll
[2011/10/29 08:42:22 | 000,065,536 | ---- | M] () -- C:\windows\System32\Ikeext.etl
[2011/10/29 07:29:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
[2011/10/29 06:59:28 | 003,307,006 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vzory podstatných mien - mužský rod.exe
[2011/10/28 05:10:02 | 000,001,076 | ---- | M] () -- C:\windows\bthservsdp.dat
[2011/10/27 05:38:12 | 000,000,906 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007Core.job
[2011/10/27 03:13:21 | 000,017,408 | ---- | M] () -- C:\windows\System32\rpcnetp.dll
[2011/10/26 19:15:21 | 004,516,008 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\LV- Priraď dielo k autorovi.exe
[2011/10/26 18:29:58 | 001,237,836 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vyvodenie hlásky a písmena i,í,I s Ivicou a Ivankou + hra,,VLÁČIK".ppsx
[2011/10/26 18:17:11 | 003,810,446 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\SJ- Usporiadaj slová podľa abecedy.exe
[2011/10/26 13:48:04 | 000,043,106 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\dekoracie_jablkovy-dzem.jpg
[2011/10/25 23:11:46 | 000,000,067 | ---- | M] () -- C:\windows\MyHeritage.INI
[2011/10/25 23:09:57 | 000,000,590 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\MyHeritage Family Tree Builder.lnk
[2011/10/25 08:16:33 | 000,000,838 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp files -> C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/10/29 13:46:37 | 000,000,860 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\HP_Webcam.exe - odkaz.lnk
[2011/10/29 13:11:43 | 020,293,194 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\shopping_teaser_3d_trailer_640x360_sk.mp4
[2011/10/29 07:45:52 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/29 06:59:24 | 003,307,006 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vzory podstatných mien - mužský rod.exe
[2011/10/26 19:15:07 | 004,516,008 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\LV- Priraď dielo k autorovi.exe
[2011/10/26 18:29:58 | 001,237,836 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vyvodenie hlásky a písmena i,í,I s Ivicou a Ivankou + hra,,VLÁČIK".ppsx
[2011/10/26 18:17:06 | 003,810,446 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\SJ- Usporiadaj slová podľa abecedy.exe
[2011/10/26 13:48:03 | 000,043,106 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\dekoracie_jablkovy-dzem.jpg
[2011/10/25 23:11:46 | 000,000,067 | ---- | C] () -- C:\windows\MyHeritage.INI
[2011/10/25 23:09:57 | 000,000,590 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\MyHeritage Family Tree Builder.lnk
[2011/10/25 23:09:50 | 000,454,656 | ---- | C] () -- C:\windows\System32\PaintX.dll
[2011/09/24 17:21:09 | 000,040,960 | ---- | C] () -- C:\windows\System32\psfind.dll
[2011/09/24 00:03:07 | 000,000,000 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\{CEEBA88D-59EB-4D27-87CB-D689E53014B6}
[2011/09/18 20:55:34 | 000,004,096 | ---- | C] () -- C:\windows\d3dx.dat
[2011/09/17 00:09:17 | 000,000,109 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\fusioncache.dat
[2011/09/10 23:09:00 | 000,000,000 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\{3DD00A03-82B0-4433-93A2-2E313D682986}
[2011/09/08 08:46:09 | 000,000,077 | ---- | C] () -- C:\windows\anata.ini
[2011/08/08 20:14:22 | 000,000,680 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\d3d9caps.dat
[2011/07/23 07:38:01 | 000,179,200 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/23 17:48:42 | 000,000,129 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/04/09 17:55:28 | 000,179,261 | ---- | C] () -- C:\windows\System32\xlive.dll.cat
[2010/11/24 07:32:36 | 000,000,053 | ---- | C] () -- C:\windows\wininit.ini
[2010/11/14 12:54:26 | 000,000,097 | ---- | C] () -- C:\windows\ALIK.INI
[2010/10/11 19:24:59 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/08/11 13:04:42 | 000,281,760 | ---- | C] () -- C:\windows\System32\drivers\atksgt.sys
[2010/08/11 13:04:18 | 000,025,888 | ---- | C] () -- C:\windows\System32\drivers\lirsgt.sys
[2010/07/17 20:15:57 | 000,165,376 | ---- | C] () -- C:\windows\System32\unrar.dll
[2010/07/17 20:15:57 | 000,000,038 | ---- | C] () -- C:\windows\avisplitter.ini
[2010/07/17 20:15:54 | 000,790,528 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2010/07/17 20:15:54 | 000,134,144 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2010/07/17 20:15:53 | 000,108,032 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2010/06/15 02:29:18 | 000,005,632 | ---- | C] () -- C:\windows\System32\StarOpen.sys
[2010/05/17 10:10:52 | 000,092,942 | ---- | C] () -- C:\windows\System32\perfh01B.dat
[2010/05/17 10:10:52 | 000,029,660 | ---- | C] () -- C:\windows\System32\perfc01B.dat
[2010/05/17 09:39:14 | 000,062,976 | ---- | C] () -- C:\windows\System32\PrintBrmUi.exe
[2010/05/17 09:39:08 | 000,117,248 | ---- | C] () -- C:\windows\System32\EhStorAuthn.dll
[2010/05/17 09:39:04 | 000,643,072 | ---- | C] () -- C:\windows\System32\autochk.exe
[2010/05/17 09:38:39 | 000,107,612 | ---- | C] () -- C:\windows\System32\StructuredQuerySchema.bin
[2009/06/18 11:10:11 | 000,017,408 | ---- | C] () -- C:\windows\System32\rpcnetp.exe
[2009/06/17 23:45:10 | 000,018,904 | ---- | C] () -- C:\windows\System32\StructuredQuerySchemaTrivial.bin
[2009/06/05 17:12:43 | 000,001,076 | ---- | C] () -- C:\windows\bthservsdp.dat
[2009/06/05 09:13:04 | 000,015,497 | ---- | C] () -- C:\windows\snp2uvc.ini
[2009/03/27 05:48:22 | 001,810,992 | ---- | C] () -- C:\windows\System32\drivers\snp2uvc.sys
[2009/03/27 05:48:12 | 000,034,096 | ---- | C] () -- C:\windows\System32\drivers\sncduvc.sys
[2009/03/27 05:47:56 | 000,027,184 | ---- | C] () -- C:\windows\snuvcdsm.exe
[2008/08/04 12:30:52 | 000,204,800 | ---- | C] () -- C:\windows\System32\IVIresizeW7.dll
[2008/08/04 12:30:52 | 000,200,704 | ---- | C] () -- C:\windows\System32\IVIresizeA6.dll
[2008/08/04 12:30:52 | 000,192,512 | ---- | C] () -- C:\windows\System32\IVIresizeP6.dll
[2008/08/04 12:30:52 | 000,192,512 | ---- | C] () -- C:\windows\System32\IVIresizeM6.dll
[2008/08/04 12:30:52 | 000,188,416 | ---- | C] () -- C:\windows\System32\IVIresizePX.dll
[2008/08/04 12:30:52 | 000,020,480 | ---- | C] () -- C:\windows\System32\IVIresize.dll
[2008/08/04 12:15:47 | 000,000,000 | ---- | C] () -- C:\windows\HPMProp.INI
[2008/05/20 22:11:32 | 000,147,456 | ---- | C] () -- C:\windows\System32\igfxCoIn_v1488.dll
[2008/05/20 21:56:40 | 002,144,744 | ---- | C] () -- C:\windows\System32\igkrng500.bin
[2008/05/20 21:56:40 | 000,469,344 | ---- | C] () -- C:\windows\System32\igcompkrng500.bin
[2008/05/20 21:56:40 | 000,100,900 | ---- | C] () -- C:\windows\System32\igfcg550.bin
[2008/04/18 17:13:12 | 000,017,408 | ---- | C] () -- C:\windows\System32\rpcnetp.dll
[2006/11/02 13:56:48 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
[2006/11/02 13:47:43 | 000,424,568 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2006/11/02 11:33:01 | 000,641,562 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2006/11/02 11:33:01 | 000,287,440 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2006/11/02 11:33:01 | 000,122,868 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2006/11/02 11:33:01 | 000,030,674 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2006/11/02 11:23:21 | 000,215,943 | ---- | C] () -- C:\windows\System32\dssec.dat
[2006/11/02 09:58:30 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
[2006/11/02 09:19:00 | 000,000,741 | ---- | C] () -- C:\windows\System32\NOISE.DAT
[2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\windows\System32\pacerprf.ini
[2006/11/02 08:25:31 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat
[2006/03/09 10:58:00 | 001,060,424 | ---- | C] () -- C:\windows\System32\WdfCoInstaller01000.dll
[2005/10/18 16:54:14 | 000,205,824 | ---- | C] () -- C:\windows\System32\OggDS.dll
[2005/04/03 23:30:00 | 000,110,592 | ---- | C] () -- C:\windows\System32\scardsyn.dll
[2001/11/14 11:56:00 | 001,802,240 | ---- | C] () -- C:\windows\System32\lcppn21.dll
[1998/05/07 04:10:00 | 000,069,632 | ---- | C] () -- C:\windows\System32\ODMA32.dll
========== LOP Check ==========
[2010/07/19 09:20:33 | 000,000,000 | ---D | M] -- C:\Users\Skola\AppData\Roaming\AVG9
[2011/09/09 05:13:43 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\AVG2012
[2011/08/13 07:17:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DAEMON Tools Lite
[2011/10/30 02:24:46 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DMCache
[2011/08/28 03:32:33 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\GHISLER
[2011/10/25 23:47:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM
[2011/10/25 23:11:04 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:09:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/15 05:19:54 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Tibo Software
[2011/10/26 03:00:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/09/09 15:29:16 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Web Technology
[2011/09/09 05:13:42 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\AVG2012
[2010/08/01 05:45:52 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\AVG9
[2011/08/20 17:57:59 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\DAEMON Tools Lite
[2011/10/28 02:24:38 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\DMCache
[2010/08/22 00:45:57 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\ESET
[2011/02/02 15:49:22 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\fltk.org
[2011/10/20 04:47:32 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\IDM
[2010/11/26 19:15:10 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\InterVideo
[2010/11/29 19:26:32 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\ML
[2011/10/27 05:23:25 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\MyHeritage
[2010/12/07 20:02:47 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\PeerNetworking
[2010/10/24 14:22:53 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Quest3D
[2011/06/15 11:30:39 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\RenPy
[2010/10/24 14:22:53 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Roaming
[2010/12/08 06:00:03 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\TuneUp Software
[2011/02/02 15:02:47 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\TuxPaint
[2010/12/07 19:32:05 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Zoner
[2011/10/28 05:10:12 | 000,032,612 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT
[2011/10/30 02:34:15 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job
[2011/10/30 02:06:57 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job
[2011/10/30 02:05:57 | 000,000,472 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job
[2011/10/30 02:04:57 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job
[2011/10/30 02:05:57 | 000,000,436 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/21 03:23:26 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/21 03:23:26 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008/01/21 03:25:09 | 000,642,560 | ---- | M] () MD5=0700F1A8632E70D3DDDD3B848F39062F -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2009/04/10 22:27:22 | 000,643,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\autochk.exe
[2009/04/10 22:27:22 | 000,643,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
< MD5 for: CDROM.SYS >
[2008/01/21 03:23:28 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008/01/21 03:23:28 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006/11/02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2008/01/21 03:24:57 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2009/04/10 22:28:20 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\System32\cryptsvc.dll
[2009/04/10 22:28:20 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2008/10/29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 03:24:50 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009/04/10 22:32:48 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTOR.SYS >
[2008/04/15 18:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2008/04/15 18:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_6917e7b0\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\drivers\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_77c04a30\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_054cd65f\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\drivers\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/06/15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009/09/10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\System32\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009/02/13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2009/06/15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009/06/15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009/02/13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009/06/15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009/06/15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009/09/09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009/09/10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2009/02/13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009/04/10 22:32:50 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009/04/10 22:32:50 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2008/01/21 03:24:15 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
[2008/02/08 05:25:28 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=C8560010A542B5DCA94C62468DC20784 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.22110_none_a845f8a63534c8d3\ndis.sys
[2008/02/08 05:22:00 | 000,503,352 | ---- | M] (Microsoft Corporation) MD5=E50187F20ED749F57C97836FEDE14BD6 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.20768_none_a631acb4382f8e4f\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009/04/10 22:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/10 22:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/21 03:24:31 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\drivers\nvraid.sys
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/21 03:25:18 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009/04/10 22:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/10 22:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2008/01/21 03:24:14 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009/04/10 22:28:06 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009/04/10 22:28:06 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
< MD5 for: SVCHOST.EXE >
[2008/01/21 03:24:10 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/21 03:24:10 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008/04/26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2009/04/10 22:33:04 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009/08/15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009/08/14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\System32\drivers\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2010/02/18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010/02/18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009/08/14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2010/02/18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010/02/18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2010/06/16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009/08/14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011/06/17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010/06/16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2010/06/16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2008/04/26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009/08/14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2008/08/04 12:16:37 | 000,890,936 | ---- | M] (Microsoft Corporation) MD5=9081EBA4184E7EB87C55E18C089283A5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22144_none_b38070957fa0b5e0\tcpip.sys
[2010/02/18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010/06/16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2010/02/18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2008/01/21 03:25:29 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009/08/14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008/01/21 03:25:16 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 03:25:16 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/04/10 22:28:14 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/10 22:28:14 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008/01/21 03:25:17 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008/01/21 03:25:16 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll
[2008/01/21 03:25:16 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[10 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[16 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ]
[3 C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp files -> C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp files -> C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp files -> C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011/10/26 03:08:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Adobe
[2011/09/09 05:13:43 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\AVG2012
[2011/08/13 07:17:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DAEMON Tools Lite
[2011/10/30 02:24:46 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DMCache
[2011/10/28 20:00:36 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\dvdcss
[2011/08/28 03:32:33 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\GHISLER
[2011/07/23 06:52:40 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Identities
[2011/10/25 23:47:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM
[2011/09/18 18:44:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\InstallShield
[2011/10/26 03:06:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Macromedia
[2011/10/28 02:34:28 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Media Player Classic
[2011/10/22 19:01:08 | 000,000,000 | --SD | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft
[2011/08/22 16:14:07 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla
[2011/10/25 23:11:04 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:09:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/15 05:19:54 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Tibo Software
[2011/10/26 03:00:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/10/26 13:18:41 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\vlc
[2011/09/09 15:29:16 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Web Technology
< %APPDATA%\*.exe /s >
[2011/09/12 23:10:55 | 000,005,632 | R--- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Installer\{051E7B99-6D35-4905-BAF3-740893EF657A}\Icon051E7B992.exe
[2011/09/12 23:10:55 | 000,004,608 | R--- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Installer\{051E7B99-6D35-4905-BAF3-740893EF657A}\Icon051E7B993.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011/08/13 07:11:07 | 000,443,448 | ---- | M] () Unable to obtain MD5 -- C:\windows\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2008/01/21 04:20:25 | 017,223,680 | ---- | M] () -- C:\windows\System32\config\COMPONENTS.SAV
[2008/01/21 04:20:08 | 000,106,496 | ---- | M] () -- C:\windows\System32\config\DEFAULT.SAV
[2008/01/21 04:20:25 | 000,020,480 | ---- | M] () -- C:\windows\System32\config\SECURITY.SAV
[2006/11/02 11:34:08 | 010,133,504 | ---- | M] () -- C:\windows\System32\config\SOFTWARE.SAV
[2006/11/02 11:34:08 | 001,826,816 | ---- | M] () -- C:\windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011/10/30 02:42:23 | 000,003,216 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/30 02:42:23 | 000,003,216 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/27 08:37:57 | 000,000,052 | ---- | M] () -- C:\windows\system32\DOErrors.log
[2011/10/29 08:42:22 | 000,065,536 | ---- | M] () -- C:\windows\system32\Ikeext.etl
[2011/10/29 20:01:33 | 000,122,868 | ---- | M] () -- C:\windows\system32\perfc009.dat
[2011/10/29 20:01:33 | 000,029,660 | ---- | M] () -- C:\windows\system32\perfc01B.dat
[2011/10/29 20:01:33 | 000,641,562 | ---- | M] () -- C:\windows\system32\perfh009.dat
[2011/10/29 20:01:33 | 000,092,942 | ---- | M] () -- C:\windows\system32\perfh01B.dat
[2011/10/29 20:01:33 | 000,875,954 | ---- | M] () -- C:\windows\system32\PerfStringBackup.INI
[2011/10/29 08:42:35 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\windows\system32\rpcnet.dll
[2011/10/27 03:13:21 | 000,017,408 | ---- | M] () -- C:\windows\system32\rpcnetp.dll
[2011/10/29 21:49:09 | 000,017,408 | ---- | M] () -- C:\windows\system32\rpcnetp.exe
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"WindowsWelcomeCenter" = rundll32.exe oobefldr.dll,ShowWelcomeCenter
"LightScribe Control Panel" = C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [2008/03/18 01:59:40 | 002,289,664 | ---- | M] (Hewlett-Packard Company)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011/08/02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd)
"IDMan" = C:\Program Files\IDManager\IDMan.exe /onboot -- [2011/04/25 16:30:52 | 003,298,712 | ---- | M] (Tonec Inc.)
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011/10/30 02:31:15 | 000,000,512 | ---- | M] () MD5=6E8E3997FC7884D3812743BEA97E8E07 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2008/02/28 07:48:34 | 000,004,593 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker.png
[2009/06/29 02:39:12 | 000,001,363 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker.txt
[2006/08/27 07:21:42 | 000,009,053 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker_desc_ca.ogg
[2009/04/05 13:09:48 | 000,015,618 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker_desc_el.ogg
< *keygen* /s >
< *loader* /s >
[2011/08/27 20:13:44 | 000,000,195 | ---- | M] () -- \Program Files\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2006/10/26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2008/04/08 10:47:54 | 000,053,511 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Generic\Images\themeloader_default_chapter.jpg
[2008/04/08 10:47:54 | 000,053,511 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Generic\Images\themeloader_default_menu.jpg
[2008/04/17 17:29:48 | 000,007,307 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1025\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:48 | 000,007,270 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1028\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:50 | 000,007,610 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1029\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:52 | 000,007,281 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1030\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:54 | 000,007,323 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1031\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:56 | 000,007,778 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1032\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:56 | 000,007,283 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1033\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:58 | 000,007,410 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1035\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:00 | 000,007,262 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1036\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:02 | 000,007,307 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1037\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:04 | 000,007,409 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1038\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:04 | 000,007,305 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1040\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:06 | 000,007,846 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1041\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:08 | 000,007,427 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1042\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:10 | 000,007,400 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1043\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:10 | 000,007,329 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1044\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:12 | 000,007,397 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1045\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:14 | 000,007,525 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1046\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:16 | 000,007,914 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1049\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:16 | 000,007,290 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1053\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:18 | 000,007,474 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1055\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:20 | 000,007,227 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\2052\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:22 | 000,007,584 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\2070\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:22 | 000,007,654 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\3082\Strings\RCMFormatLoaderStrings.xml
[2008/04/08 13:11:52 | 000,215,536 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFileLoader.dll
[2008/04/08 13:11:54 | 000,084,464 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderBMP.dll
[2008/04/08 13:11:56 | 000,072,176 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderECDC.dll
[2008/04/08 13:11:58 | 000,092,656 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderGIF.dll
[2008/04/08 13:12:00 | 000,207,344 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderJPG2.dll
[2008/04/08 13:13:14 | 000,072,176 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderMDC.dll
[2008/04/08 13:12:02 | 000,133,616 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderPNG.dll
[2008/04/08 13:12:04 | 000,104,944 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderTIFF.dll
[2008/04/08 13:12:42 | 000,154,096 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\LeResourceLoader.dll
[2010/01/29 05:43:52 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011/03/23 16:13:06 | 000,287,040 | ---- | M] () -- \Program Files\Program Files\programy\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2011/03/07 19:33:08 | 000,287,040 | ---- | M] () -- \Program Files\Program Files\programy\pivot\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2008/03/31 19:10:30 | 000,141,808 | ---- | M] () -- \Program Files\Roxio\VideoCore 10\VOBLoader.ax
[2008/04/01 20:01:32 | 000,170,480 | ---- | M] () -- \Program Files\Roxio\VideoUI 10\DSThemeLoader.dll
[2008/04/01 20:01:50 | 000,113,136 | ---- | M] () -- \Program Files\Roxio\VideoUI 10\DVDFormatLoaderPlugIn.dll
[2008/04/01 19:26:34 | 000,053,511 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_default_chapter.jpg
[2008/04/01 19:26:34 | 000,053,511 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_default_menu.jpg
[2008/04/01 19:26:34 | 000,040,000 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_hourglass.jpg
[2010/10/24 14:00:24 | 000,015,777 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ILoaderCGR.cgr
[2010/10/24 13:54:54 | 000,014,762 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ILoaderCGRNonOO.cgr
[2010/10/24 14:01:49 | 000,021,976 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ShipSimExtremesLoader.cgr
[2010/10/24 13:47:11 | 000,019,968 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\channels\FileLoader.dll
[2010/10/24 14:15:30 | 000,054,730 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\Projects\ShipSimExtremes\Game\GameStates\GameMissionLoader.cgr
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\TuneUp Utilities 2011\data\Integrator\images\panel6\loader.gif
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\TuneUp Utilities 2011\data\TuneUpUtilities.gadget\images\loader.gif
[2009/07/04 12:37:42 | 000,002,989 | ---- | M] () -- \Program Files\TuxPaint\etc\gtk-2.0\gdk-pixbuf.loaders
[2009/07/04 12:37:44 | 000,012,288 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009/07/04 12:37:44 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009/07/04 12:37:44 | 000,022,528 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009/07/04 12:37:44 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009/07/04 12:37:44 | 000,014,336 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009/07/04 12:37:44 | 000,010,752 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009/07/04 12:37:44 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009/07/04 12:37:44 | 000,012,288 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009/07/04 12:37:44 | 000,008,192 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009/07/04 12:37:44 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009/07/04 12:37:44 | 000,012,800 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009/07/04 12:37:44 | 000,007,680 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009/07/04 12:37:44 | 000,010,240 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009/07/04 12:37:44 | 000,024,576 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009/07/04 12:37:44 | 000,007,168 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\Windows Sidebar\Shared Gadgets\TuneUpUtilities.gadget\images\loader.gif
[2011/08/27 20:13:34 | 002,705,537 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\wow-2.1.1.1897-enUS-tools-downloader.exe
[2011/10/29 07:31:27 | 000,000,905 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEMFH0MR\TooltipLoader[1].css
[2011/10/29 07:31:27 | 000,014,290 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEMFH0MR\TooltipLoader[1].js
[2011/10/10 05:27:14 | 000,006,494 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar\modules\skin\ajax-loader.gif
[2011/10/10 05:27:14 | 000,000,729 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar\modules\skin\loader.gif
[2010/07/26 09:34:36 | 000,003,932 | ---- | M] () -- \Users\Skola\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PDPVMB3Q\uploaderapi2[1].swf
[2010/08/30 01:47:25 | 000,000,777 | ---- | M] () -- \Users\Skola\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U62VY6SP\_loader_v[1].htm
[2010/07/29 14:34:38 | 000,000,054 | ---- | M] () -- \Users\Skola\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55Y2WKB\media.mtvnservices.com\player\loader\loaderLogging.sol
[2011/07/19 00:38:02 | 000,000,723 | ---- | M] () -- \Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\img\ajax-loader.gif
[2011/07/19 00:38:02 | 000,001,722 | ---- | M] () -- \Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\js\FMLoader.js
[2011/06/26 20:48:18 | 000,000,723 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\ajax-loader[1].gif
[2011/03/31 21:50:08 | 000,003,881 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\facemoodsLoader[1].js
[2010/12/11 08:00:16 | 000,003,931 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\uploaderapi2[2].swf
[2011/03/31 21:50:05 | 000,000,909 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9Q3G1H2J\mtloader[1].js
[2011/04/26 22:34:24 | 000,002,805 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VG3B6A7V\mtloader_1.1.0[1].js
[2010/09/01 19:23:09 | 000,003,208 | ---- | M] () -- \Users\uzivatel\Desktop\co-ma-vediet-prvak_subory\loader.gif
[2011/03/07 19:33:08 | 000,287,040 | ---- | M] () -- \Users\uzivatel\Pictures\Desktop\programy\pivot\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2008/01/21 03:27:16 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2008/01/21 03:27:16 | 000,026,112 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winload.exe.mui_3bc5b827
[2008/01/21 03:27:16 | 000,019,456 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winresume.exe.mui_ff8b5358
[2010/05/17 09:55:19 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2010/05/17 09:55:19 | 000,986,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winload.exe_75835076
[2010/05/17 09:55:19 | 000,926,184 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winresume.exe_85cd1215
[2008/01/21 03:27:10 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008/01/21 03:27:10 | 000,021,048 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2_spldr.sys_98bd87a0
[2008/02/29 08:26:23 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2008/02/29 08:19:08 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2008/02/29 11:05:29 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2008/02/29 11:07:01 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2008/02/29 11:05:17 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2008/02/29 09:14:00 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2008/02/29 11:02:51 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2008/02/29 08:19:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2008/02/29 08:21:05 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2008/02/29 10:56:53 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2008/02/29 11:12:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2008/02/29 11:01:15 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2008/02/29 08:46:06 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2008/02/29 10:17:45 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008/01/21 03:22:07 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2008/02/29 08:17:27 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2008/02/29 08:13:09 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008/01/21 03:21:15 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2008/02/29 09:08:07 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2008/02/29 08:37:27 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009/04/10 23:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006/11/02 11:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008/01/21 03:19:33 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll
========== Files - Unicode (All) ==========
[2010/08/04 14:19:40 | 000,000,036 | ---- | M] ()(C:\windows\System32\?ś) -- C:\windows\System32\棘ś
[2010/08/04 14:19:40 | 000,000,036 | ---- | C] ()(C:\windows\System32\?ś) -- C:\windows\System32\棘ś
< End of report >
[2011/10/30 02:33:48 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job
[2011/10/30 02:31:15 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/10/30 02:06:57 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job
[2011/10/30 02:05:57 | 000,000,472 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job
[2011/10/30 02:05:57 | 000,000,436 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job
[2011/10/30 02:04:57 | 000,000,466 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job
[2011/10/30 01:46:00 | 000,001,060 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006UA.job
[2011/10/30 01:45:42 | 000,179,200 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/30 01:32:00 | 000,000,978 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008UA.job
[2011/10/30 01:32:00 | 000,000,926 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008Core.job
[2011/10/30 01:30:00 | 000,000,958 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007UA.job
[2011/10/30 01:02:02 | 000,000,922 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/10/30 00:42:21 | 000,003,216 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/30 00:42:21 | 000,003,216 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/29 21:49:20 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2011/10/29 21:49:09 | 000,017,408 | ---- | M] () -- C:\windows\System32\rpcnetp.exe
[2011/10/29 20:01:33 | 000,641,562 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/10/29 20:01:33 | 000,122,868 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/10/29 20:01:33 | 000,092,942 | ---- | M] () -- C:\windows\System32\perfh01B.dat
[2011/10/29 20:01:33 | 000,029,660 | ---- | M] () -- C:\windows\System32\perfc01B.dat
[2011/10/29 17:47:00 | 000,001,008 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006Core.job
[2011/10/29 17:11:03 | 107,833,782 | ---- | M] () -- C:\windows\System32\drivers\AVG\incavi.avm
[2011/10/29 17:10:24 | 000,348,155 | ---- | M] () -- C:\windows\System32\drivers\AVG\iavichjg.avm
[2011/10/29 13:46:37 | 000,000,860 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\HP_Webcam.exe - odkaz.lnk
[2011/10/29 13:20:05 | 020,293,194 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\shopping_teaser_3d_trailer_640x360_sk.mp4
[2011/10/29 08:43:01 | 000,000,918 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/10/29 08:42:35 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\windows\System32\rpcnet.dll
[2011/10/29 08:42:22 | 000,065,536 | ---- | M] () -- C:\windows\System32\Ikeext.etl
[2011/10/29 07:29:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\OTL.exe
[2011/10/29 06:59:28 | 003,307,006 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vzory podstatných mien - mužský rod.exe
[2011/10/28 05:10:02 | 000,001,076 | ---- | M] () -- C:\windows\bthservsdp.dat
[2011/10/27 05:38:12 | 000,000,906 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007Core.job
[2011/10/27 03:13:21 | 000,017,408 | ---- | M] () -- C:\windows\System32\rpcnetp.dll
[2011/10/26 19:15:21 | 004,516,008 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\LV- Priraď dielo k autorovi.exe
[2011/10/26 18:29:58 | 001,237,836 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vyvodenie hlásky a písmena i,í,I s Ivicou a Ivankou + hra,,VLÁČIK".ppsx
[2011/10/26 18:17:11 | 003,810,446 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\SJ- Usporiadaj slová podľa abecedy.exe
[2011/10/26 13:48:04 | 000,043,106 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\dekoracie_jablkovy-dzem.jpg
[2011/10/25 23:11:46 | 000,000,067 | ---- | M] () -- C:\windows\MyHeritage.INI
[2011/10/25 23:09:57 | 000,000,590 | ---- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\MyHeritage Family Tree Builder.lnk
[2011/10/25 08:16:33 | 000,000,838 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp files -> C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/10/29 13:46:37 | 000,000,860 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\HP_Webcam.exe - odkaz.lnk
[2011/10/29 13:11:43 | 020,293,194 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\shopping_teaser_3d_trailer_640x360_sk.mp4
[2011/10/29 07:45:52 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/10/29 06:59:24 | 003,307,006 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vzory podstatných mien - mužský rod.exe
[2011/10/26 19:15:07 | 004,516,008 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\LV- Priraď dielo k autorovi.exe
[2011/10/26 18:29:58 | 001,237,836 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\Vyvodenie hlásky a písmena i,í,I s Ivicou a Ivankou + hra,,VLÁČIK".ppsx
[2011/10/26 18:17:06 | 003,810,446 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\SJ- Usporiadaj slová podľa abecedy.exe
[2011/10/26 13:48:03 | 000,043,106 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\dekoracie_jablkovy-dzem.jpg
[2011/10/25 23:11:46 | 000,000,067 | ---- | C] () -- C:\windows\MyHeritage.INI
[2011/10/25 23:09:57 | 000,000,590 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\Desktop\MyHeritage Family Tree Builder.lnk
[2011/10/25 23:09:50 | 000,454,656 | ---- | C] () -- C:\windows\System32\PaintX.dll
[2011/09/24 17:21:09 | 000,040,960 | ---- | C] () -- C:\windows\System32\psfind.dll
[2011/09/24 00:03:07 | 000,000,000 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\{CEEBA88D-59EB-4D27-87CB-D689E53014B6}
[2011/09/18 20:55:34 | 000,004,096 | ---- | C] () -- C:\windows\d3dx.dat
[2011/09/17 00:09:17 | 000,000,109 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\fusioncache.dat
[2011/09/10 23:09:00 | 000,000,000 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\{3DD00A03-82B0-4433-93A2-2E313D682986}
[2011/09/08 08:46:09 | 000,000,077 | ---- | C] () -- C:\windows\anata.ini
[2011/08/08 20:14:22 | 000,000,680 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\d3d9caps.dat
[2011/07/23 07:38:01 | 000,179,200 | ---- | C] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/23 17:48:42 | 000,000,129 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2011/04/09 17:55:28 | 000,179,261 | ---- | C] () -- C:\windows\System32\xlive.dll.cat
[2010/11/24 07:32:36 | 000,000,053 | ---- | C] () -- C:\windows\wininit.ini
[2010/11/14 12:54:26 | 000,000,097 | ---- | C] () -- C:\windows\ALIK.INI
[2010/10/11 19:24:59 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/08/11 13:04:42 | 000,281,760 | ---- | C] () -- C:\windows\System32\drivers\atksgt.sys
[2010/08/11 13:04:18 | 000,025,888 | ---- | C] () -- C:\windows\System32\drivers\lirsgt.sys
[2010/07/17 20:15:57 | 000,165,376 | ---- | C] () -- C:\windows\System32\unrar.dll
[2010/07/17 20:15:57 | 000,000,038 | ---- | C] () -- C:\windows\avisplitter.ini
[2010/07/17 20:15:54 | 000,790,528 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2010/07/17 20:15:54 | 000,134,144 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2010/07/17 20:15:53 | 000,108,032 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2010/06/15 02:29:18 | 000,005,632 | ---- | C] () -- C:\windows\System32\StarOpen.sys
[2010/05/17 10:10:52 | 000,092,942 | ---- | C] () -- C:\windows\System32\perfh01B.dat
[2010/05/17 10:10:52 | 000,029,660 | ---- | C] () -- C:\windows\System32\perfc01B.dat
[2010/05/17 09:39:14 | 000,062,976 | ---- | C] () -- C:\windows\System32\PrintBrmUi.exe
[2010/05/17 09:39:08 | 000,117,248 | ---- | C] () -- C:\windows\System32\EhStorAuthn.dll
[2010/05/17 09:39:04 | 000,643,072 | ---- | C] () -- C:\windows\System32\autochk.exe
[2010/05/17 09:38:39 | 000,107,612 | ---- | C] () -- C:\windows\System32\StructuredQuerySchema.bin
[2009/06/18 11:10:11 | 000,017,408 | ---- | C] () -- C:\windows\System32\rpcnetp.exe
[2009/06/17 23:45:10 | 000,018,904 | ---- | C] () -- C:\windows\System32\StructuredQuerySchemaTrivial.bin
[2009/06/05 17:12:43 | 000,001,076 | ---- | C] () -- C:\windows\bthservsdp.dat
[2009/06/05 09:13:04 | 000,015,497 | ---- | C] () -- C:\windows\snp2uvc.ini
[2009/03/27 05:48:22 | 001,810,992 | ---- | C] () -- C:\windows\System32\drivers\snp2uvc.sys
[2009/03/27 05:48:12 | 000,034,096 | ---- | C] () -- C:\windows\System32\drivers\sncduvc.sys
[2009/03/27 05:47:56 | 000,027,184 | ---- | C] () -- C:\windows\snuvcdsm.exe
[2008/08/04 12:30:52 | 000,204,800 | ---- | C] () -- C:\windows\System32\IVIresizeW7.dll
[2008/08/04 12:30:52 | 000,200,704 | ---- | C] () -- C:\windows\System32\IVIresizeA6.dll
[2008/08/04 12:30:52 | 000,192,512 | ---- | C] () -- C:\windows\System32\IVIresizeP6.dll
[2008/08/04 12:30:52 | 000,192,512 | ---- | C] () -- C:\windows\System32\IVIresizeM6.dll
[2008/08/04 12:30:52 | 000,188,416 | ---- | C] () -- C:\windows\System32\IVIresizePX.dll
[2008/08/04 12:30:52 | 000,020,480 | ---- | C] () -- C:\windows\System32\IVIresize.dll
[2008/08/04 12:15:47 | 000,000,000 | ---- | C] () -- C:\windows\HPMProp.INI
[2008/05/20 22:11:32 | 000,147,456 | ---- | C] () -- C:\windows\System32\igfxCoIn_v1488.dll
[2008/05/20 21:56:40 | 002,144,744 | ---- | C] () -- C:\windows\System32\igkrng500.bin
[2008/05/20 21:56:40 | 000,469,344 | ---- | C] () -- C:\windows\System32\igcompkrng500.bin
[2008/05/20 21:56:40 | 000,100,900 | ---- | C] () -- C:\windows\System32\igfcg550.bin
[2008/04/18 17:13:12 | 000,017,408 | ---- | C] () -- C:\windows\System32\rpcnetp.dll
[2006/11/02 13:56:48 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
[2006/11/02 13:47:43 | 000,424,568 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2006/11/02 11:33:01 | 000,641,562 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2006/11/02 11:33:01 | 000,287,440 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2006/11/02 11:33:01 | 000,122,868 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2006/11/02 11:33:01 | 000,030,674 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2006/11/02 11:23:21 | 000,215,943 | ---- | C] () -- C:\windows\System32\dssec.dat
[2006/11/02 09:58:30 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
[2006/11/02 09:19:00 | 000,000,741 | ---- | C] () -- C:\windows\System32\NOISE.DAT
[2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\windows\System32\pacerprf.ini
[2006/11/02 08:25:31 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat
[2006/03/09 10:58:00 | 001,060,424 | ---- | C] () -- C:\windows\System32\WdfCoInstaller01000.dll
[2005/10/18 16:54:14 | 000,205,824 | ---- | C] () -- C:\windows\System32\OggDS.dll
[2005/04/03 23:30:00 | 000,110,592 | ---- | C] () -- C:\windows\System32\scardsyn.dll
[2001/11/14 11:56:00 | 001,802,240 | ---- | C] () -- C:\windows\System32\lcppn21.dll
[1998/05/07 04:10:00 | 000,069,632 | ---- | C] () -- C:\windows\System32\ODMA32.dll
========== LOP Check ==========
[2010/07/19 09:20:33 | 000,000,000 | ---D | M] -- C:\Users\Skola\AppData\Roaming\AVG9
[2011/09/09 05:13:43 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\AVG2012
[2011/08/13 07:17:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DAEMON Tools Lite
[2011/10/30 02:24:46 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DMCache
[2011/08/28 03:32:33 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\GHISLER
[2011/10/25 23:47:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM
[2011/10/25 23:11:04 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:09:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/15 05:19:54 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Tibo Software
[2011/10/26 03:00:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/09/09 15:29:16 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Web Technology
[2011/09/09 05:13:42 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\AVG2012
[2010/08/01 05:45:52 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\AVG9
[2011/08/20 17:57:59 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\DAEMON Tools Lite
[2011/10/28 02:24:38 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\DMCache
[2010/08/22 00:45:57 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\ESET
[2011/02/02 15:49:22 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\fltk.org
[2011/10/20 04:47:32 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\IDM
[2010/11/26 19:15:10 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\InterVideo
[2010/11/29 19:26:32 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\ML
[2011/10/27 05:23:25 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\MyHeritage
[2010/12/07 20:02:47 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\PeerNetworking
[2010/10/24 14:22:53 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Quest3D
[2011/06/15 11:30:39 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\RenPy
[2010/10/24 14:22:53 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Roaming
[2010/12/08 06:00:03 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\TuneUp Software
[2011/02/02 15:02:47 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\TuxPaint
[2010/12/07 19:32:05 | 000,000,000 | ---D | M] -- C:\Users\uzivatel\AppData\Roaming\Zoner
[2011/10/28 05:10:12 | 000,032,612 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT
[2011/10/30 02:34:15 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job
[2011/10/30 02:06:57 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job
[2011/10/30 02:05:57 | 000,000,472 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job
[2011/10/30 02:04:57 | 000,000,466 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job
[2011/10/30 02:05:57 | 000,000,436 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/21 03:23:26 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/10 22:32:28 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/21 03:23:26 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/21 03:23:26 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008/01/21 03:25:09 | 000,642,560 | ---- | M] () MD5=0700F1A8632E70D3DDDD3B848F39062F -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2009/04/10 22:27:22 | 000,643,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\autochk.exe
[2009/04/10 22:27:22 | 000,643,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
< MD5 for: CDROM.SYS >
[2008/01/21 03:23:28 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008/01/21 03:23:28 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009/04/10 20:39:18 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006/11/02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2008/01/21 03:24:57 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2009/04/10 22:28:20 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\System32\cryptsvc.dll
[2009/04/10 22:28:20 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2008/10/29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/10 22:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 03:24:50 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009/04/10 22:32:48 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTOR.SYS >
[2008/04/15 18:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2008/04/15 18:54:16 | 000,388,120 | ---- | M] (Intel Corporation) MD5=8D58627FEF3F8767665D9F4DC91CBD97 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_6917e7b0\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\drivers\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_77c04a30\iaStor.sys
[2008/04/15 18:53:44 | 000,312,344 | ---- | M] (Intel Corporation) MD5=DB0CC620B27A928D968C1A1E9CD9CB87 -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_054cd65f\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/21 03:23:47 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\drivers\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008/01/21 03:23:26 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/06/15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009/09/10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\System32\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009/02/13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2009/06/15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009/06/15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009/02/13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009/06/15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009/06/15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009/09/09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009/09/10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008/01/21 03:24:43 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2009/02/13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009/04/10 22:32:50 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009/04/10 22:32:50 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2008/01/21 03:24:15 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
[2008/02/08 05:25:28 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=C8560010A542B5DCA94C62468DC20784 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.22110_none_a845f8a63534c8d3\ndis.sys
[2008/02/08 05:22:00 | 000,503,352 | ---- | M] (Microsoft Corporation) MD5=E50187F20ED749F57C97836FEDE14BD6 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.20768_none_a631acb4382f8e4f\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009/04/10 22:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/10 22:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/21 03:24:31 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\drivers\nvraid.sys
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008/01/21 03:23:45 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/21 03:23:45 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/21 03:25:18 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009/04/10 22:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/10 22:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2008/01/21 03:24:14 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009/04/10 22:28:06 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009/04/10 22:28:06 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
< MD5 for: SVCHOST.EXE >
[2008/01/21 03:24:10 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/21 03:24:10 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008/04/26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2009/04/10 22:33:04 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009/08/15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009/08/14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\System32\drivers\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2010/02/18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010/02/18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009/08/14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2010/02/18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010/02/18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2010/06/16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009/08/14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011/06/17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010/06/16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2010/06/16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2008/04/26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009/08/14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2008/08/04 12:16:37 | 000,890,936 | ---- | M] (Microsoft Corporation) MD5=9081EBA4184E7EB87C55E18C089283A5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22144_none_b38070957fa0b5e0\tcpip.sys
[2010/02/18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010/06/16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2010/02/18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2008/01/21 03:25:29 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009/08/14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008/01/21 03:25:16 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 03:25:16 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/04/10 22:28:14 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/10 22:28:14 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008/01/21 03:25:17 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008/01/21 03:25:16 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll
[2008/01/21 03:25:16 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[10 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[16 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ]
[3 C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp files -> C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp files -> C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp files -> C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011/10/26 03:08:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Adobe
[2011/09/09 05:13:43 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\AVG2012
[2011/08/13 07:17:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DAEMON Tools Lite
[2011/10/30 02:24:46 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\DMCache
[2011/10/28 20:00:36 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\dvdcss
[2011/08/28 03:32:33 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\GHISLER
[2011/07/23 06:52:40 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Identities
[2011/10/25 23:47:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\IDM
[2011/09/18 18:44:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\InstallShield
[2011/10/26 03:06:56 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Macromedia
[2011/10/28 02:34:28 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Media Player Classic
[2011/10/22 19:01:08 | 000,000,000 | --SD | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft
[2011/08/22 16:14:07 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla
[2011/10/25 23:11:04 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\MyHeritage
[2011/10/25 23:09:49 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2011/10/15 05:19:54 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Tibo Software
[2011/10/26 03:00:01 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\TuneUp Software
[2011/10/26 13:18:41 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\vlc
[2011/09/09 15:29:16 | 000,000,000 | ---D | M] -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Web Technology
< %APPDATA%\*.exe /s >
[2011/09/12 23:10:55 | 000,005,632 | R--- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Installer\{051E7B99-6D35-4905-BAF3-740893EF657A}\Icon051E7B992.exe
[2011/09/12 23:10:55 | 000,004,608 | R--- | M] () -- C:\Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Microsoft\Installer\{051E7B99-6D35-4905-BAF3-740893EF657A}\Icon051E7B993.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011/08/13 07:11:07 | 000,443,448 | ---- | M] () Unable to obtain MD5 -- C:\windows\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2008/01/21 04:20:25 | 017,223,680 | ---- | M] () -- C:\windows\System32\config\COMPONENTS.SAV
[2008/01/21 04:20:08 | 000,106,496 | ---- | M] () -- C:\windows\System32\config\DEFAULT.SAV
[2008/01/21 04:20:25 | 000,020,480 | ---- | M] () -- C:\windows\System32\config\SECURITY.SAV
[2006/11/02 11:34:08 | 010,133,504 | ---- | M] () -- C:\windows\System32\config\SOFTWARE.SAV
[2006/11/02 11:34:08 | 001,826,816 | ---- | M] () -- C:\windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011/10/30 02:42:23 | 000,003,216 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/10/30 02:42:23 | 000,003,216 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/10/27 08:37:57 | 000,000,052 | ---- | M] () -- C:\windows\system32\DOErrors.log
[2011/10/29 08:42:22 | 000,065,536 | ---- | M] () -- C:\windows\system32\Ikeext.etl
[2011/10/29 20:01:33 | 000,122,868 | ---- | M] () -- C:\windows\system32\perfc009.dat
[2011/10/29 20:01:33 | 000,029,660 | ---- | M] () -- C:\windows\system32\perfc01B.dat
[2011/10/29 20:01:33 | 000,641,562 | ---- | M] () -- C:\windows\system32\perfh009.dat
[2011/10/29 20:01:33 | 000,092,942 | ---- | M] () -- C:\windows\system32\perfh01B.dat
[2011/10/29 20:01:33 | 000,875,954 | ---- | M] () -- C:\windows\system32\PerfStringBackup.INI
[2011/10/29 08:42:35 | 000,058,288 | ---- | M] (Absolute Software Corp.) -- C:\windows\system32\rpcnet.dll
[2011/10/27 03:13:21 | 000,017,408 | ---- | M] () -- C:\windows\system32\rpcnetp.dll
[2011/10/29 21:49:09 | 000,017,408 | ---- | M] () -- C:\windows\system32\rpcnetp.exe
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"WindowsWelcomeCenter" = rundll32.exe oobefldr.dll,ShowWelcomeCenter
"LightScribe Control Panel" = C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [2008/03/18 01:59:40 | 002,289,664 | ---- | M] (Hewlett-Packard Company)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011/08/02 08:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd)
"IDMan" = C:\Program Files\IDManager\IDMan.exe /onboot -- [2011/04/25 16:30:52 | 003,298,712 | ---- | M] (Tonec Inc.)
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011/10/30 02:31:15 | 000,000,512 | ---- | M] () MD5=6E8E3997FC7884D3812743BEA97E8E07 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2008/02/28 07:48:34 | 000,004,593 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker.png
[2009/06/29 02:39:12 | 000,001,363 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker.txt
[2006/08/27 07:21:42 | 000,009,053 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker_desc_ca.ogg
[2009/04/05 13:09:48 | 000,015,618 | ---- | M] () -- \Program Files\TuxPaint\data\stamps\household\dishes\utensils\nutcracker_desc_el.ogg
< *keygen* /s >
< *loader* /s >
[2011/08/27 20:13:44 | 000,000,195 | ---- | M] () -- \Program Files\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2006/10/26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2008/04/08 10:47:54 | 000,053,511 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Generic\Images\themeloader_default_chapter.jpg
[2008/04/08 10:47:54 | 000,053,511 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Generic\Images\themeloader_default_menu.jpg
[2008/04/17 17:29:48 | 000,007,307 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1025\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:48 | 000,007,270 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1028\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:50 | 000,007,610 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1029\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:52 | 000,007,281 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1030\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:54 | 000,007,323 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1031\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:56 | 000,007,778 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1032\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:56 | 000,007,283 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1033\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:29:58 | 000,007,410 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1035\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:00 | 000,007,262 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1036\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:02 | 000,007,307 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1037\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:04 | 000,007,409 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1038\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:04 | 000,007,305 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1040\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:06 | 000,007,846 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1041\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:08 | 000,007,427 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1042\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:10 | 000,007,400 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1043\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:10 | 000,007,329 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1044\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:12 | 000,007,397 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1045\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:14 | 000,007,525 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1046\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:16 | 000,007,914 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1049\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:16 | 000,007,290 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1053\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:18 | 000,007,474 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\1055\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:20 | 000,007,227 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\2052\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:22 | 000,007,584 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\2070\Strings\RCMFormatLoaderStrings.xml
[2008/04/17 17:30:22 | 000,007,654 | R--- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\Common Resources\Shared\Locale\3082\Strings\RCMFormatLoaderStrings.xml
[2008/04/08 13:11:52 | 000,215,536 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFileLoader.dll
[2008/04/08 13:11:54 | 000,084,464 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderBMP.dll
[2008/04/08 13:11:56 | 000,072,176 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderECDC.dll
[2008/04/08 13:11:58 | 000,092,656 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderGIF.dll
[2008/04/08 13:12:00 | 000,207,344 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderJPG2.dll
[2008/04/08 13:13:14 | 000,072,176 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderMDC.dll
[2008/04/08 13:12:02 | 000,133,616 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderPNG.dll
[2008/04/08 13:12:04 | 000,104,944 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSFormatLoaderTIFF.dll
[2008/04/08 13:12:42 | 000,154,096 | ---- | M] () -- \Program Files\Common Files\Roxio Shared\10.0\SharedCOM\LeResourceLoader.dll
[2010/01/29 05:43:52 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011/03/23 16:13:06 | 000,287,040 | ---- | M] () -- \Program Files\Program Files\programy\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2011/03/07 19:33:08 | 000,287,040 | ---- | M] () -- \Program Files\Program Files\programy\pivot\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2008/03/31 19:10:30 | 000,141,808 | ---- | M] () -- \Program Files\Roxio\VideoCore 10\VOBLoader.ax
[2008/04/01 20:01:32 | 000,170,480 | ---- | M] () -- \Program Files\Roxio\VideoUI 10\DSThemeLoader.dll
[2008/04/01 20:01:50 | 000,113,136 | ---- | M] () -- \Program Files\Roxio\VideoUI 10\DVDFormatLoaderPlugIn.dll
[2008/04/01 19:26:34 | 000,053,511 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_default_chapter.jpg
[2008/04/01 19:26:34 | 000,053,511 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_default_menu.jpg
[2008/04/01 19:26:34 | 000,040,000 | R--- | M] () -- \Program Files\Roxio\VideoUI 10\Skins\Default\Generic\Images\themeloader_hourglass.jpg
[2010/10/24 14:00:24 | 000,015,777 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ILoaderCGR.cgr
[2010/10/24 13:54:54 | 000,014,762 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ILoaderCGRNonOO.cgr
[2010/10/24 14:01:49 | 000,021,976 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\ShipSimExtremesLoader.cgr
[2010/10/24 13:47:11 | 000,019,968 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\channels\FileLoader.dll
[2010/10/24 14:15:30 | 000,054,730 | ---- | M] () -- \Program Files\Steam\steamapps\common\shipsimextremesdemo\Projects\ShipSimExtremes\Game\GameStates\GameMissionLoader.cgr
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\TuneUp Utilities 2011\data\Integrator\images\panel6\loader.gif
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\TuneUp Utilities 2011\data\TuneUpUtilities.gadget\images\loader.gif
[2009/07/04 12:37:42 | 000,002,989 | ---- | M] () -- \Program Files\TuxPaint\etc\gtk-2.0\gdk-pixbuf.loaders
[2009/07/04 12:37:44 | 000,012,288 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009/07/04 12:37:44 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009/07/04 12:37:44 | 000,022,528 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009/07/04 12:37:44 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009/07/04 12:37:44 | 000,014,336 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009/07/04 12:37:44 | 000,010,752 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009/07/04 12:37:44 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009/07/04 12:37:44 | 000,012,288 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009/07/04 12:37:44 | 000,008,192 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009/07/04 12:37:44 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009/07/04 12:37:44 | 000,012,800 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009/07/04 12:37:44 | 000,007,680 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009/07/04 12:37:44 | 000,010,240 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009/07/04 12:37:44 | 000,024,576 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009/07/04 12:37:44 | 000,007,168 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2009/09/25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\Windows Sidebar\Shared Gadgets\TuneUpUtilities.gadget\images\loader.gif
[2011/08/27 20:13:34 | 002,705,537 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\wow-2.1.1.1897-enUS-tools-downloader.exe
[2011/10/29 07:31:27 | 000,000,905 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEMFH0MR\TooltipLoader[1].css
[2011/10/29 07:31:27 | 000,014,290 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEMFH0MR\TooltipLoader[1].js
[2011/10/10 05:27:14 | 000,006,494 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar\modules\skin\ajax-loader.gif
[2011/10/10 05:27:14 | 000,000,729 | ---- | M] () -- \Users\Skola.UIPSUIP-Y4JHDKK\AppData\Roaming\Mozilla\Firefox\Profiles\ovt6nfjm.default\extensions\avg@toolbar\modules\skin\loader.gif
[2010/07/26 09:34:36 | 000,003,932 | ---- | M] () -- \Users\Skola\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PDPVMB3Q\uploaderapi2[1].swf
[2010/08/30 01:47:25 | 000,000,777 | ---- | M] () -- \Users\Skola\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U62VY6SP\_loader_v[1].htm
[2010/07/29 14:34:38 | 000,000,054 | ---- | M] () -- \Users\Skola\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55Y2WKB\media.mtvnservices.com\player\loader\loaderLogging.sol
[2011/07/19 00:38:02 | 000,000,723 | ---- | M] () -- \Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\img\ajax-loader.gif
[2011/07/19 00:38:02 | 000,001,722 | ---- | M] () -- \Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.4.0_0\js\FMLoader.js
[2011/06/26 20:48:18 | 000,000,723 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\ajax-loader[1].gif
[2011/03/31 21:50:08 | 000,003,881 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\facemoodsLoader[1].js
[2010/12/11 08:00:16 | 000,003,931 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1M9W5NI4\uploaderapi2[2].swf
[2011/03/31 21:50:05 | 000,000,909 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9Q3G1H2J\mtloader[1].js
[2011/04/26 22:34:24 | 000,002,805 | ---- | M] () -- \Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VG3B6A7V\mtloader_1.1.0[1].js
[2010/09/01 19:23:09 | 000,003,208 | ---- | M] () -- \Users\uzivatel\Desktop\co-ma-vediet-prvak_subory\loader.gif
[2011/03/07 19:33:08 | 000,287,040 | ---- | M] () -- \Users\uzivatel\Pictures\Desktop\programy\pivot\SoftonicDownloader_for_pivot-stickfigure-animator.exe
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2008/01/21 03:27:16 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2008/01/21 03:27:16 | 000,026,112 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winload.exe.mui_3bc5b827
[2008/01/21 03:27:16 | 000,019,456 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winresume.exe.mui_ff8b5358
[2010/05/17 09:55:19 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2010/05/17 09:55:19 | 000,986,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winload.exe_75835076
[2010/05/17 09:55:19 | 000,926,184 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winresume.exe_85cd1215
[2008/01/21 03:27:10 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008/01/21 03:27:10 | 000,021,048 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2_spldr.sys_98bd87a0
[2008/02/29 08:26:23 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2008/02/29 08:19:08 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2008/02/29 11:05:29 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2008/02/29 11:07:01 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2008/02/29 11:05:17 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2008/02/29 09:14:00 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2008/02/29 11:02:51 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2008/02/29 08:19:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2008/02/29 08:21:05 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2008/02/29 10:56:53 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2008/02/29 11:12:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2008/02/29 11:01:15 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2008/02/29 08:46:06 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2008/02/29 10:17:45 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008/01/21 03:22:07 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2008/02/29 08:17:27 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2008/02/29 08:13:09 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008/01/21 03:21:15 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2008/02/29 09:08:07 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2008/02/29 08:37:27 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009/04/10 23:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006/11/02 11:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008/01/21 03:19:33 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008/01/21 03:24:03 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll
========== Files - Unicode (All) ==========
[2010/08/04 14:19:40 | 000,000,036 | ---- | M] ()(C:\windows\System32\?ś) -- C:\windows\System32\棘ś
[2010/08/04 14:19:40 | 000,000,036 | ---- | C] ()(C:\windows\System32\?ś) -- C:\windows\System32\棘ś
< End of report >
Re: Preventivní kontrola ntb
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicla&s={searchTerms}&f=4 IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.myheritage.com IE - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) FF - prefs.js..browser.search.selectedEngine: "ICQ Search" FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid=%7Be932c5d7-ef78-4e31-a227-803dd3fd081d%7D&mid=7802d88cefcf47d1abded16cf58fb8ae-626256218d560465acc2d5f332a2498adf51b12d&ds=AVG&v=8.0.0.34.1&lang=sk&pr=fr&d=2011-10-10%2006%3A27%3A10&sap=ku&q=" O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\bh\facemoods.dll (facemoods.com BHO) O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodsTlbr.dll (facemoods.com) O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found. O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKU\S-1-5-21-391740970-4154419230-2004191983-1008\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.6\facemoodssrv.exe (facemoods.com) O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O33 - MountPoints2\{3f6a14c8-d440-11df-9f31-0025b36b515d}\Shell - "" = AutoRun [4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [10 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [16 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ] [3 C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ] [1 C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp files -> C:\windows\SoftwareDistribution\Download\0A02B744E8976B08453BE717F4C707E2\*.tmp -> ] [1 C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp files -> C:\windows\SoftwareDistribution\Download\9CAFB051DE51A342E7F475FB0083CE60\*.tmp -> ] [1 C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp files -> C:\windows\SoftwareDistribution\Download\DC749FE17A339D78A5DDCD2582437DBD\*.tmp -> ] :services gupdate gupdatem gusvc :reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""=- "SweetIM"=- "facemoods"=- "Adobe ARM"=- "Family Tree Builder Update"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"=- "DAEMON Tools Lite"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] :files C:\windows\tasks\GoogleUpdateTaskMachineCore.job C:\windows\tasks\GoogleUpdateTaskMachineUA.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006Core.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1006UA.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007Core.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1007UA.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008Core.job C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-391740970-4154419230-2004191983-1008UA.job C:\windows\tasks\User_Feed_Synchronization-{5B59BEBB-5539-44FC-9722-B268CA129195}.job C:\windows\tasks\User_Feed_Synchronization-{95B1D761-43A8-4E7A-961E-CBB67103DB92}.job C:\windows\tasks\User_Feed_Synchronization-{CB9BA394-947B-4F34-B635-D2490BF77B3A}.job C:\windows\tasks\User_Feed_Synchronization-{CC004183-EABF-49A5-BA2A-AD4CE9DA892E}.job C:\windows\tasks\User_Feed_Synchronization-{DC8072B8-0FA2-4BE8-B30F-2188A35554F0}.job C:\Program Files\facemoods.com C:\Program Files\Ask.com C:\Program Files\SweetIM %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola ntb
inak sú v mojom ntb nejaké vírusy? mohli by ste mi odpovedať načo slúži program otl?
Re: Preventivní kontrola ntb
OTL udelal sken PC, ja jsem na jeho zaklade napsal opravny skript, ktery i havet pomaze...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?