VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivne

https://forum.viry.cz:443/viewtopic.php?t=126854

Stránka 1 z 2

Preventivne

Napsal: 29 pro 2012 17:40
od kouzelnik3
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jakub at 2012-12-29 17:36:42
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 71 GB (34%) free of 206 GB
Total RAM: 3767 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:37:11, on 29.12.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\365dni\365dniNET.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\trend micro\Jakub.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [BatteryCare] C:\Program Files (x86)\BatteryCare\BatteryCare.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_7B684F571039795D9613652596821858] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [365dni] C:\Program Files (x86)\365dni\365dniNET.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: {8F6D19AA-5C8B-4F25-853A-C4AC3B6E0489} (aipdkj) - Unknown owner - C:\Program Files (x86)\ophcrack\pwdump\servpw.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\Windows\SysWOW64\fsproflt.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MySQL - Unknown owner - C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: {A4D85095-BB77-4C57-9670-3E9B9CCC4BD1} (piybs) - Unknown owner - C:\Program Files (x86)\ophcrack\pwdump\servpw.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Program Files (x86)\TightVNC\tvnserver.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: {266A9C4B-1B3F-4A9B-9E9E-4611A3A44077} (wsevqc) - Unknown owner - C:\Program Files (x86)\ophcrack\pwdump\servpw.exe

--
End of file - 14621 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
taskeng.exe {B1555DB0-23F0-490C-8987-F186A9C5A391}
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\fsproflt.exe
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMYMOVIES
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe"
"C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.1\my.ini" MySQL
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
adb fork-server server
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\TightVNC\tvnserver.exe" -service
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\365dni\365dniNET.exe"
WLIDSvcM.exe 3696
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.0.320670310\384653123" /prefetch:3
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3900.1.406362764\1012532726" --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2622 --ignored=" --type=renderer " /prefetch:12
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.2.986865294\359759026" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.4.386818964\616911506" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.5.100783391\1079599766" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.6.1139027919\149350288" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.7.482489521\1651849834" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.8.2084945897\1830316862" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.9.1174507128\343346940" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.10.1179442536\2116184494" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.11.785898342\547369924" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.12.1451377079\46657295" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.13.679166363\301300305" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.14.570334732\827837821" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.15.520733672\611612702" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/EnableStage3D/enabled_default/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/NewTabButton/default/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetchingLearning/SpeculativePrefetchingDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3900.16.1910197258\1485037083" /prefetch:3
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll" --lang=cs --channel="3900.17.1948763282\1598490690" /prefetch:4
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskeng.exe {8F4D3520-96D7-4251-B4D9-0FE1487B723B}
"C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jakub\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe"
taskhost.exe $(Arg0)

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://seznam.cz"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.5.3&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=15.0.2.72]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=15.0.2.72]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.2.72]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.2.72]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=15.0.2.72]
"Description"=15.0.2.72
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.0]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsProgressDialog.js
nsXULAppInstall.js
XULRunner.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\
jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack
{687578b9-7132-4a7a-80e4-30ee31099e03}
{800b5000-a755-47e1-992b-48a1c1357f07}
{e9df9360-97f8-4690-afe6-996c80790da4}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-06-21 545192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-06-21 193456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-02-16 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-09-24 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-09-24 155384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-03-31 2735400]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BatteryCare"=C:\Program Files (x86)\BatteryCare\BatteryCare.exe [2012-12-03 740864]
"GoogleChromeAutoLaunch_7B684F571039795D9613652596821858"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2012-12-05 1242728]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"365dni"=C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13 858624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer ePower Management]
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-01-05 860040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2007-01-28 287077]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2011-06-17 266496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BatteryCare]
C:\Program Files (x86)\BatteryCare\BatteryCare.exe [2012-12-03 740864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\chromium]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2012-12-05 1242728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [2009-01-29 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2010-04-13 649608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Jakub\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Jakub\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_7B684F571039795D9613652596821858]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2012-12-05 1242728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui]
C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe /gui []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-01-10 392984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7M\ICQ.exe silent loginmode=4 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2012-01-10 167704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
C:\Program Files (x86)\Launch Manager\LManager.exe [2010-08-10 975952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray2k]
C:\Program Files (x86)\Morgan\Morgan M-JPEG2000 codec V3\MMTray2k.exe [2010-03-14 101888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup]
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pamela.exe]
C:\Program Files (x86)\Pamela\pamela.exe [2012-06-11 4179456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2012-01-10 417560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-10-19 17875120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2012-12-21 1354736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StudentDOG]
C:\Program Files (x86)\Student DOG\StudentDOG.exe -h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuiteTray]
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-04-02 340848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2012-02-16 296056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TV IR]
C:\Program Files (x86)\TV IR\TV IR.exe [2011-04-13 1437184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\TightVNC\tvnserver.exe [2012-04-26 1168400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-12-27 969104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
C:\PROGRA~2\ArcSoft\TOTALM~1.5\TMMONI~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-06-14 27595032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\Jakub\AppData\Local\Facebook\MESSEN~1\214554~1.0\FACEBO~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~4\Office14\ONENOTEM.EXE [2011-09-02 227712]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll,C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-10-09 249344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\fsproflt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv

Re: Preventivne

Napsal: 29 pro 2012 17:41
od kouzelnik3
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.MJ2C"=M3JP2K64.dll

======File associations======

.bat - edit -
.cmd - edit -
.inf - open -
.ini - open -
.js - edit -
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.reg - edit -
.txt - open -
.vbs - edit -
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-12-21 23:11:53 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-12-21 23:11:53 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-12-21 23:11:53 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-12-21 23:11:53 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-12-21 23:11:53 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-12-21 23:11:53 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-12-21 23:11:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-12-21 23:11:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-12-21 23:11:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-12-21 23:11:49 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-12-21 23:11:49 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-12-21 23:11:48 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-12-21 23:11:48 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-12-21 23:11:46 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-12-21 20:55:14 ----D---- C:\Program Files (x86)\Steam
2012-12-21 14:00:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-21 14:00:22 ----A---- C:\Windows\system32\atmlib.dll
2012-12-21 14:00:17 ----A---- C:\Windows\system32\atmfd.dll
2012-12-21 14:00:15 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-18 20:43:11 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2012-12-18 14:16:46 ----D---- C:\NVIDIA
2012-12-14 14:22:34 ----D---- C:\Program Files (x86)\Spirent Communications
2012-12-13 00:14:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-12-13 00:14:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-12-13 00:14:56 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-13 00:14:55 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-12-13 00:14:55 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-13 00:14:55 ----A---- C:\Windows\system32\ieui.dll
2012-12-13 00:14:54 ----A---- C:\Windows\SYSWOW64\url.dll
2012-12-13 00:14:54 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-12-13 00:14:54 ----A---- C:\Windows\system32\url.dll
2012-12-13 00:14:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-12-13 00:14:53 ----A---- C:\Windows\system32\urlmon.dll
2012-12-13 00:14:53 ----A---- C:\Windows\system32\jscript9.dll
2012-12-13 00:14:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-12-13 00:14:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-12-13 00:14:52 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-13 00:14:51 ----A---- C:\Windows\system32\wininet.dll
2012-12-13 00:14:51 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-13 00:14:50 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-12-13 00:14:50 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-12-13 00:14:50 ----A---- C:\Windows\system32\vbscript.dll
2012-12-13 00:14:50 ----A---- C:\Windows\system32\jscript.dll
2012-12-13 00:14:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-12-13 00:14:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-12-13 00:14:49 ----A---- C:\Windows\system32\iertutil.dll
2012-12-13 00:14:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-12-13 00:14:45 ----A---- C:\Windows\system32\mshtml.dll
2012-12-13 00:14:44 ----A---- C:\Windows\system32\ieframe.dll
2012-12-13 00:14:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-12-12 23:08:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-12 23:08:49 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 23:08:38 ----A---- C:\Windows\system32\win32k.sys
2012-12-12 23:08:17 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-12 23:08:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-12-12 23:08:15 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-12-12 23:08:15 ----A---- C:\Windows\system32\winsrv.dll
2012-12-12 23:08:15 ----A---- C:\Windows\system32\kernel32.dll
2012-12-12 23:08:15 ----A---- C:\Windows\system32\conhost.exe
2012-12-12 23:08:10 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-12-12 23:08:10 ----A---- C:\Windows\system32\wow64win.dll
2012-12-12 23:08:10 ----A---- C:\Windows\system32\wow64.dll
2012-12-12 23:08:09 ----A---- C:\Windows\system32\wow64cpu.dll
2012-12-12 23:08:09 ----A---- C:\Windows\system32\ntvdm64.dll
2012-12-12 23:08:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 23:08:08 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 23:08:08 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-12-12 23:08:08 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-12-12 23:08:08 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-12-12 23:08:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 23:08:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-12 23:08:06 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-12 23:08:06 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 23:08:06 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-12 23:08:06 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 23:08:06 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-12 23:08:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 23:08:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-12 23:08:05 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 23:08:05 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-12 23:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 23:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 23:08:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 23:08:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 23:08:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 23:08:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 23:08:00 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 23:07:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 23:07:59 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 23:07:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 23:07:57 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 23:07:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 23:07:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 23:07:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 23:07:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 23:07:54 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 23:07:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-12 23:07:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 23:07:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 23:07:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-12 23:07:52 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 23:07:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 23:07:51 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 23:07:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 23:07:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 23:07:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 23:07:47 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 23:07:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 23:07:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 23:07:44 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 23:07:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 23:07:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 23:07:42 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 23:07:42 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 23:07:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 23:07:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-12 23:07:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 23:07:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-12 23:07:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 23:07:37 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 23:07:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 23:07:35 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-12 23:07:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-12 23:07:32 ----A---- C:\Windows\SYSWOW64\user.exe
2012-12-12 23:07:11 ----A---- C:\Windows\system32\dpnet.dll
2012-12-12 23:07:10 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-06 00:01:56 ----D---- C:\Users\Jakub\AppData\Roaming\TeamViewer
2012-12-02 18:59:13 ----D---- C:\Program Files (x86)\Adobe Download Assistant

======List of files/folders modified in the last 1 month======

2012-12-29 17:36:49 ----D---- C:\Program Files\trend micro
2012-12-29 17:35:30 ----D---- C:\Windows\Temp
2012-12-29 17:35:19 ----D---- C:\Windows\system32\config
2012-12-29 17:34:55 ----D---- C:\Windows\inf
2012-12-29 17:34:13 ----A---- C:\Windows\SYSWOW64\log.txt
2012-12-29 17:34:02 ----D---- C:\Windows
2012-12-29 17:30:47 ----D---- C:\Users\Jakub\AppData\Roaming\uTorrent
2012-12-29 17:30:47 ----D---- C:\Users\Jakub\AppData\Roaming\Media Player Classic
2012-12-29 17:30:47 ----D---- C:\Users\Jakub\AppData\Roaming\FileZilla
2012-12-29 17:30:47 ----D---- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
2012-12-29 17:30:35 ----D---- C:\Windows\Logs
2012-12-29 17:30:35 ----D---- C:\Windows\debug
2012-12-29 17:30:17 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2012-12-29 17:29:47 ----D---- C:\Program Files\CCleaner
2012-12-29 17:22:13 ----D---- C:\Windows\system32\Tasks
2012-12-29 17:22:11 ----SHD---- C:\Windows\Installer
2012-12-29 17:22:09 ----D---- C:\ProgramData\Skype
2012-12-28 18:26:18 ----A---- C:\Windows\M3JP2K.INI
2012-12-28 18:26:08 ----AHD---- C:\ProgramData
2012-12-27 13:51:44 ----D---- C:\Windows\System32
2012-12-27 13:51:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-26 19:00:19 ----D---- C:\Users\Jakub\AppData\Roaming\Hamachi
2012-12-26 11:54:18 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2012-12-25 20:40:26 ----D---- C:\Windows\Prefetch
2012-12-25 10:57:32 ----SHD---- C:\System Volume Information
2012-12-24 14:58:17 ----D---- C:\Users\Jakub\AppData\Roaming\Ashampoo
2012-12-21 23:11:54 ----D---- C:\Windows\SysWOW64
2012-12-21 23:10:02 ----RSD---- C:\Windows\assembly
2012-12-21 20:55:14 ----D---- C:\Program Files (x86)
2012-12-21 19:08:08 ----D---- C:\Windows\winsxs
2012-12-21 14:00:56 ----D---- C:\Windows\system32\catroot2
2012-12-21 14:00:56 ----D---- C:\Windows\system32\catroot
2012-12-20 19:22:21 ----D---- C:\Program Files\Acer
2012-12-20 19:22:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-12-18 21:24:58 ----D---- C:\Program Files (x86)\Microsoft Office
2012-12-18 21:24:45 ----D---- C:\Windows\ShellNew
2012-12-18 21:24:28 ----A---- C:\Windows\win.ini
2012-12-18 21:24:21 ----SD---- C:\ProgramData\Microsoft
2012-12-18 21:21:32 ----RSD---- C:\Windows\Fonts
2012-12-18 21:21:31 ----D---- C:\Program Files (x86)\MSBuild
2012-12-18 21:20:16 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2012-12-18 21:18:23 ----D---- C:\ProgramData\Microsoft Help
2012-12-18 20:59:30 ----D---- C:\Program Files\Microsoft Office
2012-12-18 20:27:16 ----D---- C:\Windows\system32\DriverStore
2012-12-18 20:26:25 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-12-18 17:55:42 ----D---- C:\Windows\rescache
2012-12-16 11:39:15 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2012-12-14 14:26:38 ----D---- C:\Program Files (x86)\Common Files
2012-12-14 14:22:34 ----D---- C:\Program Files (x86)\HTC
2012-12-13 19:08:18 ----D---- C:\Users\Jakub\AppData\Roaming\Adobe
2012-12-13 07:11:44 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-12-13 07:11:44 ----D---- C:\Windows\system32\cs-CZ
2012-12-13 07:11:40 ----D---- C:\Windows\AppPatch
2012-12-13 07:11:39 ----D---- C:\Windows\SYSWOW64\migration
2012-12-13 07:11:39 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-13 07:11:38 ----D---- C:\Windows\system32\migration
2012-12-13 07:11:38 ----D---- C:\Program Files\Internet Explorer
2012-12-13 00:17:15 ----A---- C:\Windows\system32\MRT.exe
2012-12-12 14:10:41 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-12-06 00:01:30 ----D---- C:\Program Files (x86)\TeamViewer
2012-12-03 18:13:05 ----D---- C:\Users\Jakub\AppData\Roaming\BatteryCare
2012-12-03 07:20:41 ----D---- C:\Program Files (x86)\BatteryCare
2012-12-02 19:01:24 ----D---- C:\Program Files\Adobe
2012-12-02 19:01:23 ----D---- C:\Program Files\Common Files\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2011-07-27 24456]
R0 FSProFilter;FSPro File Filter; C:\Windows\System32\Drivers\FSPFltd.sys [2010-07-22 54848]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-04-13 540696]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-10-30 21136]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-09 283200]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-09-08 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-09-08 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-09-08 62776]
R2 acedrv11;acedrv11; \??\C:\Windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-08-21 35344]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2007-01-27 53960]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-02 2750464]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 ElbyDelay;ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [2006-12-14 14032]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2012-11-24 33344]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2012-02-11 82048]
R3 smsbda;DVB-T TV Stick; C:\Windows\system32\drivers\smsbda.sys [2009-09-18 63520]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-03-31 1424944]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-09-12 35112]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys []
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BTCOM;Bluetooth Serial port driver; C:\Windows\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\Windows\System32\Drivers\btcombus.sys []
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2010-04-06 30088]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-04-13 135560]
S3 FACAP;facap, FastAccess Video Capture; C:\Windows\system32\DRIVERS\facap.sys [2008-09-24 238848]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 48488]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2012-07-24 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2010-04-06 27016]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-27 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-09-22 243712]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 146736]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R2 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-04-02 173424]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-01-05 867712]
R2 fsproflt;FSPro Filter Service; C:\Windows\SysWOW64\fsproflt.exe [2009-11-30 136192]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-26 29696]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2012-10-26 87368]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-04-05 255376]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MSSQL$MYMOVIES;SQL Server (MYMOVIES); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe [2009-08-18 7599616]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2011-06-17 255744]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-10-08 166912]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-05-09 76888]
R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 153440]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-11-29 3463080]
R2 tvnserver;TightVNC Server; C:\Program Files (x86)\TightVNC\tvnserver.exe [2012-04-26 1168400]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-10 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-08 1258856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-10-19 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 aipdkj;{8F6D19AA-5C8B-4F25-853A-C4AC3B6E0489}; C:\Program Files (x86)\ophcrack\pwdump\servpw.exe [2008-07-22 57344]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-10-09 655624]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-10 136176]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-11-21 115168]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 piybs;{A4D85095-BB77-4C57-9670-3E9B9CCC4BD1}; C:\Program Files (x86)\ophcrack\pwdump\servpw.exe [2008-07-22 57344]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-08-01 724888]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-21 541760]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe []
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]

-----------------EOF-----------------

Re: Preventivne

Napsal: 29 pro 2012 22:00
od vyosek
Zdravim :)

:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
  • Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

Re: Preventivne

Napsal: 30 pro 2012 15:02
od kouzelnik3
OTL logfile created on: 30.12.2012 14:10:29 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,68 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 28,24% Memory free
7,36 Gb Paging File | 3,92 Gb Available in Paging File | 53,25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 200,72 Gb Total Space | 68,14 Gb Free Space | 33,95% Space Free | Partition Type: NTFS
Drive H: | 482,82 Gb Total Space | 411,65 Gb Free Space | 85,26% Space Free | Partition Type: NTFS

Computer Name: KOUZELNIK | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.12.30 14:08:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
PRC - [2012.12.05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012.11.29 14:50:25 | 003,463,080 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012.11.21 19:27:26 | 000,388,576 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
PRC - [2012.11.18 22:05:30 | 000,168,864 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012.10.26 16:17:52 | 000,087,368 | ---- | M] (Nero AG) -- C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
PRC - [2012.10.08 16:40:38 | 000,166,912 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2012.09.20 17:07:23 | 000,212,432 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
PRC - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.05.09 18:28:36 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012.04.26 20:44:58 | 001,168,400 | ---- | M] (GlavSoft LLC.) -- C:\Program Files (x86)\TightVNC\tvnserver.exe
PRC - [2012.04.05 15:48:02 | 000,255,376 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2011.06.17 01:22:44 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
PRC - [2011.05.26 07:40:48 | 000,029,696 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
PRC - [2011.04.02 22:09:38 | 000,173,424 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
PRC - [2010.08.10 10:06:16 | 000,321,104 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2010.05.13 14:41:10 | 000,858,624 | ---- | M] (Microsoft) -- C:\Program Files (x86)\365dni\365dniNET.exe
PRC - [2010.04.13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010.03.18 05:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010.03.18 05:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009.11.30 22:43:32 | 000,136,192 | ---- | M] (FSPro Labs) -- C:\Windows\SysWOW64\fsproflt.exe


========== Modules (No Company Name) ==========

MOD - [2012.12.05 02:15:15 | 012,456,040 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
MOD - [2012.12.05 02:15:15 | 000,460,904 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppgooglenaclpluginchrome.dll
MOD - [2012.12.05 02:15:14 | 004,008,040 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll
MOD - [2012.12.05 02:14:29 | 000,587,880 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libglesv2.dll
MOD - [2012.12.05 02:14:28 | 000,124,520 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libegl.dll
MOD - [2012.12.05 02:14:21 | 000,157,304 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avutil-51.dll
MOD - [2012.12.05 02:14:20 | 000,275,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avformat-54.dll
MOD - [2012.12.05 02:14:19 | 002,168,952 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll
MOD - [2012.11.29 22:59:32 | 000,093,696 | ---- | M] () -- C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
MOD - [2012.11.21 19:27:27 | 002,240,992 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
MOD - [2012.11.21 19:27:27 | 000,157,664 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\nsldap32v60.dll
MOD - [2012.11.21 19:27:27 | 000,021,984 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\nsldappr32v60.dll
MOD - [2012.11.21 06:26:34 | 000,008,704 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\Thunderbird\Profiles\aqfafplp.default\extensions\mintrayr@tn123.ath.cx\lib\tray_x86-msvc.dll
MOD - [2012.11.18 22:05:30 | 000,168,864 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
MOD - [2012.11.14 23:11:25 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll
MOD - [2012.11.14 18:02:05 | 000,628,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\a30d7e65103254213dc62f238be50f97\System.EnterpriseServices.ni.dll
MOD - [2012.11.14 18:02:03 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\4d7a457d9f9adcce4d201119b5179c29\System.Transactions.ni.dll
MOD - [2012.11.14 18:02:01 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\3d4e9d4f6c945d6d3b7d423fdb6bd274\System.Data.ni.dll
MOD - [2012.11.14 18:01:26 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll
MOD - [2012.11.14 18:01:18 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll
MOD - [2012.11.14 18:00:54 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
MOD - [2012.11.14 18:00:49 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll
MOD - [2012.11.14 18:00:48 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012.11.14 18:00:24 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2012.02.16 13:56:24 | 000,271,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Data.SqlServerCe\3.5.1.0__89845dcd8080cc91\System.Data.SqlServerCe.dll
MOD - [2011.10.09 00:38:15 | 000,344,064 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_cs_b77a5c561934e089\System.Data.resources.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010.11.21 04:24:08 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2009.06.10 22:23:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll


========== Services (SafeList) ==========

SRV:64bit: - File not found [Disabled | Unknown] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV:64bit: - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012.04.05 15:48:02 | 000,255,376 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV:64bit: - [2011.01.05 23:23:58 | 000,867,712 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2010.09.23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012.12.21 20:58:22 | 000,541,760 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.12.12 14:10:42 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.11.29 14:50:25 | 003,463,080 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012.11.21 19:27:27 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.10.26 16:17:52 | 000,087,368 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe -- (HTCMonitorService)
SRV - [2012.10.19 16:14:08 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.10.08 16:40:38 | 000,166,912 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012.10.08 10:42:54 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.08.01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.05.09 18:28:36 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012.04.26 20:44:58 | 001,168,400 | ---- | M] (GlavSoft LLC.) [Auto | Running] -- C:\Program Files (x86)\TightVNC\tvnserver.exe -- (tvnserver)
SRV - [2011.10.09 00:19:46 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011.06.17 01:22:44 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2011.05.26 07:40:48 | 000,029,696 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2011.04.02 22:09:38 | 000,173,424 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2011.03.13 18:58:30 | 000,074,912 | ---- | M] (Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2010.10.12 18:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010.08.10 10:06:16 | 000,321,104 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010.04.13 17:57:58 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.18 05:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010.03.18 05:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.11.30 22:43:32 | 000,136,192 | ---- | M] (FSPro Labs) [Auto | Running] -- C:\Windows\SysWOW64\fsproflt.exe -- (fsproflt)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (wsevqc)
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (piybs)
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (aipdkj)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012.11.24 20:53:44 | 000,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2012.11.09 19:23:04 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.10.30 23:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012.10.30 23:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012.10.30 23:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012.10.30 23:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012.10.30 23:51:55 | 000,021,136 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:64bit: - [2012.10.30 23:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012.10.15 17:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012.10.08 10:42:36 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012.09.12 12:36:37 | 000,035,112 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.07.24 09:04:56 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2012.06.27 14:18:52 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2012.06.18 12:34:44 | 000,019,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdrvio.sys -- (pwdrvio)
DRV:64bit: - [2012.06.18 12:34:42 | 000,012,384 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdspio.sys -- (pwdspio)
DRV:64bit: - [2012.03.08 17:40:52 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.02.11 09:10:48 | 000,082,048 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2012.01.10 22:28:18 | 012,311,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.01.09 16:28:20 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2012.01.09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2012.01.09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2012.01.09 16:28:18 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.12.19 13:45:22 | 000,146,736 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2011.09.08 12:51:33 | 000,062,776 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:64bit: - [2011.09.08 12:51:33 | 000,022,648 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:64bit: - [2011.09.08 12:51:33 | 000,020,520 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:64bit: - [2011.08.21 21:56:22 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (npf)
DRV:64bit: - [2011.07.27 09:30:40 | 000,024,456 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus)
DRV:64bit: - [2011.07.14 06:35:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.07.14 06:35:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.06.02 04:37:32 | 002,750,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2011.03.31 18:32:00 | 001,424,944 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011.03.13 18:58:44 | 000,280,224 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2011.03.13 18:58:44 | 000,201,376 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2011.03.13 18:58:44 | 000,154,272 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2011.03.13 18:58:44 | 000,055,456 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2011.03.13 18:58:42 | 000,298,656 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2011.03.13 18:58:42 | 000,051,872 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AthDfu.sys -- (ATHDFU)
DRV:64bit: - [2011.03.13 18:58:42 | 000,036,000 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2011.03.13 18:58:42 | 000,028,832 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2011.03.10 05:01:45 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2011.03.10 05:01:45 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2010.12.16 23:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010.11.21 04:24:15 | 000,146,432 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rmcast.sys -- (RMCAST)
DRV:64bit: - [2010.11.21 04:23:48 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.09.22 02:47:10 | 000,243,712 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010.07.22 17:13:28 | 000,054,848 | ---- | M] (FSPro Labs) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\FSPFltd.sys -- (FSProFilter)
DRV:64bit: - [2010.06.25 15:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010.06.21 10:45:56 | 000,287,232 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010.05.15 13:48:28 | 000,384,040 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2010.04.13 17:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010.04.13 11:15:04 | 000,135,560 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2010.04.06 17:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs)
DRV:64bit: - [2010.04.06 17:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV:64bit: - [2010.02.27 00:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010.02.24 11:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11)
DRV:64bit: - [2009.09.18 06:13:02 | 000,063,520 | ---- | M] (Siano) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\smsbda.sys -- (smsbda)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.09.26 18:02:36 | 000,115,328 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:64bit: - [2008.09.24 19:36:14 | 000,238,848 | ---- | M] (Sensible Vision ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\facap.sys -- (FACAP)
DRV:64bit: - [2007.02.16 01:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2007.01.27 19:40:50 | 000,053,960 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AnyDVD.sys -- (AnyDVD)
DRV:64bit: - [2006.12.14 00:41:49 | 000,014,032 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyDelay.sys -- (ElbyDelay)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008.07.26 21:30:36 | 000,014,544 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\BatteryCare\WinRing0x64.sys -- (WinRing0_1_2_0)
DRV - [2007.02.16 01:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2007.01.27 19:40:50 | 000,053,960 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2006.12.14 00:41:49 | 000,014,032 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyDelay.sys -- (ElbyDelay)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {e9df9360-97f8-4690-afe6-996c80790da4} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox


IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{23EE25D7-691F-49DC-B52B-A1C2FCF80CE6}: "URL" = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searc}
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}: "URL" = http://go.mail.ru/search?q={searchTerms ... =1&fr=ietb
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://go.mail.ru/search?fr=fftb&utf8in&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://seznam.cz"
FF - prefs.js..extensions.enabledAddons: uprotectit@reputation.com:0.17.5
FF - prefs.js..extensions.enabledAddons: {76063e7f-3558-4b68-8287-54eb6512adc0}:2.8.0
FF - prefs.js..extensions.enabledAddons: {7fb9a47c-8237-47dd-a247-bf2cb7f07e2a}:2.5.1
FF - prefs.js..extensions.enabledAddons: {800b5000-a755-47e1-992b-48a1c1357f07}:1.5.3
FF - prefs.js..extensions.enabledAddons: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:15.0.2
FF - prefs.js..extensions.enabledAddons: wrc@avast.com:7.0.1474
FF - prefs.js..extensions.enabledAddons: {c50ca3c4-5656-43c2-a061-13e717f73fc8}:4.2.4
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.5.3&q="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.2.72: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.2.72: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.2.72: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.2.72: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.2.72: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Jakub\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll File not found
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Jakub\AppData\Local\Facebook\Messenger\2.1.4631.0\npFbDesktopPlugin.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012.02.13 19:17:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012.10.20 19:01:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fe_12.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_12.0
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.11.05 07:05:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.07.27 19:45:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.12.18 21:09:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2012.11.21 19:27:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012.02.13 19:17:57 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.07.27 19:45:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.12.18 21:09:01 | 000,000,000 | ---D | M]

[2012.02.14 07:18:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Extensions
[2012.02.10 15:43:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions
[2012.02.10 15:43:50 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012.12.19 19:06:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions
[2012.12.19 18:14:11 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012.08.08 15:49:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.12.19 18:14:13 | 000,000,000 | ---D | M] (uTorrentControl Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
[2012.04.15 20:22:33 | 000,000,000 | ---D | M] (fluschipranie) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack
[2012.03.09 19:50:48 | 000,038,601 | ---- | M] () (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\uprotectit@reputation.com.xpi
[2012.04.03 19:59:30 | 000,106,705 | ---- | M] () (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{76063e7f-3558-4b68-8287-54eb6512adc0}.xpi
[2012.04.03 19:59:30 | 000,331,610 | ---- | M] () (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{7fb9a47c-8237-47dd-a247-bf2cb7f07e2a}.xpi
[2012.12.19 19:06:58 | 000,316,317 | ---- | M] () (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}.xpi
[2012.03.26 17:25:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.11.05 07:05:52 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2012.10.20 19:01:00 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2012.07.27 19:45:56 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.07.27 19:45:53 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2012.07.27 19:45:53 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.07.27 19:45:53 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2012.07.27 19:45:53 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.07.27 19:45:53 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - homepage: http://google.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://google.cz/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
CHR - plugin: Downloader Detector (Enabled) = C:\Program Files (x86)\Downloader\npdd.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: Media Go Detector (Enabled) = C:\Program Files (x86)\Sony\Media Go\npmediago.dll
CHR - plugin: PlayStation(R)Network Downloader Check Plug-in (Enabled) = C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll
CHR - plugin: WildTangent Games App Presence Detector (Enabled) = C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Facebook Desktop (Enabled) = C:\Users\Jakub\AppData\Local\Facebook\Messenger\2.0.4478.0\npFbDesktopPlugin.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Jakub\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - Extension: KMPlayer Toolbar = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaoggiphohkihibdkcnhnokmkfmhnj\7.14.1.33482_0\
CHR - Extension: QR k\u00F3d = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaephdgbinagkeepamlbkhkfbiaedabm\1.4_0\
CHR - Extension: Google Translate = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.4_0\
CHR - Extension: Angry Birds = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Last.fm free music player = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbncpldmanoknoahidbgmkgobgmhnafh\2.9.692_0\
CHR - Extension: FB Refresh = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0\
CHR - Extension: YouTube = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Chrome YouTube Downloader = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja\2.6.14_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Speed Dial = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.2_0\
CHR - Extension: Tampermonkey = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\2.9.2985_0\
CHR - Extension: Gmelius - Ad Remover and Better UI for Gmail\u2122 = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheionainndbbpoacpnopgmnihkcmnkl\5.6.3_0\
CHR - Extension: Rank Checker = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\donhbnilopiolhmilncgbdbmmefgjoad\0.1.6_0\
CHR - Extension: Gmail Offline = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.19_0\
CHR - Extension: Frame two pages = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\eldgpcphflnopbjadiaonofideekgdgm\1.6.1_0\
CHR - Extension: Close duplicate tabs = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\eobkckcknaliagdbpoeihojjgfkmdnpe\0.1_0\
CHR - Extension: PhotoLive - Download Facebook Photos! = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpjnpabklnaaifclgealaepelncljadk\2.0.1_0\
CHR - Extension: QR Code Generator = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb\0.2.4_0\
CHR - Extension: AdBlock = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.54_0\
CHR - Extension: Cut the Rope = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\14_0\
CHR - Extension: TinEye Reverse Image Search = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.2_0\
CHR - Extension: LastPass = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.0.14_0\
CHR - Extension: Voice Search = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhfkcobomkalfdlmkongnhnhahkmnaad\1.1.1_0\
CHR - Extension: Last.fm Scrobbler = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm\1.12_0\
CHR - Extension: LoopTube = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\iabfifgkojglcmehgphalogldmpapaeg\1.33_0\
CHR - Extension: avast! WebRep = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: Concentrate = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\idfmgklhndkcggamadboiaepmohpjhjj\1.0.5_0\
CHR - Extension: Auto HD for YouTube = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\impifaipidijbkhimnjlkfaoflglglgn\2.2.1.189_0\
CHR - Extension: Trash Can = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbdjgdkojiakdhlhfcaohpfgjgemcegi\0.1_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Gladiatus Crazy Add On = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\jggbidmjnmplnobkkjiinjmbnhccpkbj\2.9.0_0\
CHR - Extension: TW-DB.info Quick Import Button = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmdfkjlljlcnpieheebgemppmahlebgn\1.1_0\
CHR - Extension: Shareaholic for Google Chrome\u2122 = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmipnjdeifmobkhgogdnomkihhgojep\5.6.2_0\
CHR - Extension: Kalkulacka = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkgihpbaofhkiliohfepioflkkbapao\1.0.9_0\
CHR - Extension: P\u0159evod m\u011Bn = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjehaadplpgckpgeoddpnijogjaldela\1.3_0\
CHR - Extension: Labyrint = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeimnckmnebflgijneknoapkcnaffnl\1.2_0\
CHR - Extension: Webcam Toy = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade\1.4_0\
CHR - Extension: FVD Video Downloader = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\1.4.5_0\
CHR - Extension: InnoGames International = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpgjmggepafkhenaeknpnjiceakbedpi\2.3.18.20_0\
CHR - Extension: Clickable Links = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\mblbciejcodpealifnhfjbdlkedplodp\1.1.6_0\
CHR - Extension: The West Petee's utilities = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfpcdadfkkbgdgebljpdhgfncjipfhfc\0.5.1.1_0\
CHR - Extension: Kontrola e-mailu Google = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: The West - TW Pro+ [SOM] = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhaephghhnbloocmblckmbkdolbbnolk\3.1.0.8_0\
CHR - Extension: Angry Birds = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nllkkflncainlmehooebdaodggehpknh\1.0_0\
CHR - Extension: Lyrics for Google Chrome\u2122 = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\oglbipcbkmlknhfhabolnniekmlhfoek\2.0.0_0\
CHR - Extension: TV = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiodjcfboomhnbbmoimodpahebopdagm\1.0.1.9_0\
CHR - Extension: Google Publisher Toolbar = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\omioeahgfecgfpfldejlnideemfidnkc\3.4.20_0\
CHR - Extension: Picasa = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb\6.2.2_0\
CHR - Extension: Kalkula\u010Dka l\u00E1sky = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\oolmcecgdmgibngcbeedeljjadklplag\1.3_0\
CHR - Extension: Gmail = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: Geoseznam = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.2_0\
CHR - Extension: Chrome Update Notifier Plus = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfbafagepmnjfhgoaakiobjffddcnbd\0.5_0\

O1 HOSTS File: ([2010.05.13 16:53:40 | 000,001,204 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\Toolbar\WebBrowser: (no name) - {687578B9-7132-4A7A-80E4-30EE31099E03} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001..\Run: [365dni] C:\Program Files (x86)\365dni\365dniNET.exe (Microsoft)
O4 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001..\Run: [BatteryCare] C:\Program Files (x86)\BatteryCare\BatteryCare.exe (Filipe Lourenço)
O4 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001..\Run: [GoogleChromeAutoLaunch_7B684F571039795D9613652596821858] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAPower = 0
O7 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{14C5290D-C4C4-4CA2-8A7A-0FC6385BB627}: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point


Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.MJ2C - M3JP2K64.dll (Morgan Multimedia)
Drivers32: msacm.avis - C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Filters\ffdshow\ffdshow.ax ()
Drivers32: msacm.l3codec - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Filters\ffdshow\ffdshow.ax ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.MJ2C - C:\Windows\SysWow64\M3JP2K32.dll (Morgan Multimedia)
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.12.30 14:08:37 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2012.12.26 13:51:41 | 000,000,000 | ---D | C] -- C:\Users\Jakub\AppData\Local\{02736D04-E80D-46CA-A0A2-F74A74CC4D81}
[2012.12.25 20:41:29 | 000,000,000 | ---D | C] -- C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
[2012.02.11 09:10:44 | 000,082,048 | ---- | C] (VSO Software) -- C:\Users\Jakub\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.12.30 14:16:20 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.12.30 14:12:14 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.12.30 14:12:01 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.12.30 14:12:01 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.30 14:10:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.12.30 14:08:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2012.12.30 14:03:53 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job
[2012.12.30 14:03:10 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.12.30 14:02:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.12.30 14:01:58 | 2962,255,872 | -HS- | M] () -- C:\hiberfil.sys
[2012.12.29 17:29:48 | 000,000,827 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.12.28 18:26:18 | 000,001,716 | ---- | M] () -- C:\Windows\M3JP2K.INI
[2012.12.27 13:51:44 | 001,604,000 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012.12.27 13:51:44 | 000,678,864 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2012.12.27 13:51:44 | 000,663,580 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012.12.27 13:51:44 | 000,140,300 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2012.12.27 13:51:44 | 000,124,774 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012.12.25 20:41:29 | 000,001,163 | ---- | M] () -- C:\Users\Jakub\Desktop\Format Factory.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.12.30 14:16:20 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.12.25 20:41:29 | 000,001,163 | ---- | C] () -- C:\Users\Jakub\Desktop\Format Factory.lnk
[2012.12.13 19:29:58 | 000,000,132 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2012.08.02 18:30:20 | 001,496,686 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.07.14 18:04:45 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2012.06.29 13:46:17 | 000,025,600 | ---- | C] () -- C:\Windows\pwnr.dll
[2012.06.27 20:51:52 | 000,000,044 | ---- | C] () -- C:\Users\Jakub\jagex_cl_runescape_LIVE.dat
[2012.06.27 20:51:52 | 000,000,024 | ---- | C] () -- C:\Users\Jakub\random.dat
[2012.06.26 09:14:45 | 000,000,218 | ---- | C] () -- C:\Windows\wininit.ini
[2012.06.05 19:09:39 | 000,000,132 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2012.05.09 18:28:40 | 000,283,416 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.05.09 18:28:36 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.03.18 14:18:39 | 000,001,368 | ---- | C] () -- C:\Windows\ARCHPR.INI
[2012.03.17 18:13:58 | 000,000,456 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\Metin2_Multibot.cfg
[2012.03.07 18:24:05 | 000,000,380 | ---- | C] () -- C:\Windows\SysWow64\GlobalData.dat
[2012.03.05 22:55:07 | 000,007,168 | ---- | C] () -- C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.13 19:14:03 | 000,184,395 | ---- | C] () -- C:\Windows\hpoins14.dat
[2012.02.13 19:14:03 | 000,001,498 | ---- | C] () -- C:\Windows\hpomdl14.dat
[2012.02.11 09:10:44 | 000,093,696 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\ezpinst.exe
[2012.02.11 09:10:44 | 000,007,176 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.cat
[2012.02.11 09:10:44 | 000,001,167 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.inf
[2012.02.10 13:02:57 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2012.01.10 22:27:26 | 000,867,020 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2012.01.10 22:27:26 | 000,128,204 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2012.01.10 22:27:26 | 000,105,608 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2012.01.10 21:29:54 | 013,904,384 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2011.08.21 21:56:24 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2011.04.29 21:09:04 | 000,009,975 | ---- | C] () -- C:\Windows\SysWow64\mswznloie.dll
[2011.01.15 23:25:24 | 000,131,072 | ---- | C] () -- C:\Windows\SysWow64\msuzcloid.dll

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012.09.11 17:20:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.14 07:10:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\365dni
[2012.04.16 18:01:48 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Artisteer
[2012.12.24 14:58:17 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.02.16 20:58:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Atari
[2012.11.17 12:07:15 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Audacity
[2012.12.03 18:13:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\BatteryCare
[2012.03.26 13:55:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Chrome
[2012.11.24 19:07:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\CMUV
[2012.02.17 14:32:51 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.08.02 16:38:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DBC2F6FD-3140-41E0-A2A1-D6BAB77D5E21__F893F7CA-8278-41DF-A76F-CAF0437A90CD__
[2012.05.13 19:25:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Dream Aquarium
[2012.11.25 19:43:11 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Dropbox
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\FileZilla
[2012.07.07 12:55:55 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.10.10 19:58:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HTC
[2012.11.04 20:43:58 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HTC Sync
[2012.06.09 18:28:50 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\iFree
[2012.05.17 18:32:50 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImTOO
[2012.02.28 20:11:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\KeePass
[2012.02.29 21:50:04 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Lamantine
[2012.10.03 17:58:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LolClient
[2012.02.29 19:24:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Luxand
[2012.08.28 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MegaCloud
[2012.04.07 13:32:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Miranda
[2012.08.14 19:08:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2012.06.09 18:37:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MP3SkypeRecorder
[2012.10.10 13:29:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Nokia
[2012.10.10 13:29:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Nokia Suite
[2012.04.17 14:39:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ObviousIdea
[2012.02.24 13:12:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\OpenOffice.org
[2012.03.16 19:54:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.02.18 14:21:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Origin
[2012.10.10 19:58:44 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.06.11 16:54:12 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Pamela
[2012.03.05 14:35:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PC Suite
[2012.06.05 18:34:03 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PhotoFiltre 7
[2012.08.20 19:51:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Posta
[2012.10.02 15:50:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProtectDISC
[2012.02.17 14:40:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Publish Providers
[2012.07.22 19:22:45 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Rajce
[2012.10.02 12:56:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Rovio
[2012.02.22 14:56:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SFBot
[2012.02.27 19:22:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SkyMonk
[2012.03.05 22:55:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Solveig Multimedia
[2012.07.03 19:08:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sony
[2012.06.29 19:39:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sony Creative Software Inc
[2012.06.08 19:36:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SplitMediaLabs
[2012.06.06 12:56:36 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.09.12 19:17:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Student dog
[2012.07.14 18:07:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Synaptics
[2012.12.06 00:01:56 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.05.13 20:16:27 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.02.10 14:20:53 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TightVNC
[2012.10.03 12:45:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ts3overlay
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\uTorrent
[2012.08.29 19:23:53 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.09.11 19:33:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\wargaming.net
[2012.11.09 20:45:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\WildTangent
[2012.02.17 20:48:36 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Windows Live Writer

Re: Preventivne

Napsal: 30 pro 2012 15:03
od kouzelnik3
========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,546 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.02.10 12:31:23 | 000,000,946 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.02.10 12:31:25 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.06.08 19:37:28 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.07.19 08:31:00 | 000,000,910 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001Core.job
[2012.07.19 08:31:02 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.07.14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.07.14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.07.14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.07.14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.07.14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.07.14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2011.09.29 18:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2010.11.21 04:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012.08.22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012.03.30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2011.07.14 06:24:59 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2012.03.30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2011.07.14 06:24:59 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.07.20 03:13:45 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=CB6A53EF141CC3DA32DA54F7E75D301B -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21687_none_118505f696597a9d\tcpip.sys
[2012.10.03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2011.07.20 03:13:45 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=DC08410DB2D0CC542DACAC7A90E6CB7A -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17582_none_10f667b97d405c20\tcpip.sys
[2012.08.22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
[2011.09.29 17:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[7 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[15 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[9 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.09.11 17:20:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.14 07:10:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\365dni
[2012.12.13 19:08:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Adobe
[2012.06.06 12:56:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Adobe Mini Bridge CS5.1
[2012.02.10 14:34:12 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ahead
[2012.04.16 18:01:48 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Apple Computer
[2012.04.25 18:41:48 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ArcSoft
[2012.04.16 18:01:48 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Artisteer
[2012.12.24 14:58:17 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.02.16 20:58:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Atari
[2012.11.17 12:07:15 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Audacity
[2012.12.03 18:13:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\BatteryCare
[2012.03.26 13:55:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Chrome
[2012.11.24 19:07:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\CMUV
[2012.02.17 14:32:51 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012.11.19 14:21:55 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\CyberLink
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.08.02 16:38:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DBC2F6FD-3140-41E0-A2A1-D6BAB77D5E21__F893F7CA-8278-41DF-A76F-CAF0437A90CD__
[2012.05.13 19:25:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Dream Aquarium
[2012.11.25 19:43:11 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Dropbox
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\FileZilla
[2012.07.07 12:55:55 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.12.26 19:00:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Hamachi
[2012.07.02 15:15:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HP
[2012.10.10 19:58:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HTC
[2012.11.04 20:43:58 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HTC Sync
[2012.02.10 12:09:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Identities
[2012.06.09 18:28:50 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\iFree
[2012.05.17 18:32:50 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImTOO
[2012.02.28 20:11:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\KeePass
[2012.02.29 21:50:04 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Lamantine
[2012.10.03 17:58:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LolClient
[2012.02.29 19:24:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Luxand
[2012.02.10 12:10:04 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Macromedia
[2012.07.20 18:02:02 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Malwarebytes
[2010.11.21 08:16:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Media Center Programs
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Media Player Classic
[2012.08.28 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MegaCloud
[2012.07.17 09:20:28 | 000,000,000 | --SD | M] -- C:\Users\Jakub\AppData\Roaming\Microsoft
[2012.04.07 13:32:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Miranda
[2012.02.26 09:54:27 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\mIRC
[2012.08.14 19:08:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2012.11.02 20:04:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Mozilla
[2012.06.09 18:37:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MP3SkypeRecorder
[2012.10.10 18:53:25 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Nero
[2012.10.10 13:29:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Nokia
[2012.10.10 13:29:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Nokia Suite
[2012.02.11 09:57:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\NVIDIA
[2012.04.17 14:39:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ObviousIdea
[2012.02.24 13:12:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\OpenOffice.org
[2012.03.16 19:54:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.02.18 14:21:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Origin
[2012.10.10 19:58:44 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.06.11 16:54:12 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Pamela
[2012.03.05 14:35:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PC Suite
[2012.06.05 18:34:03 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PhotoFiltre 7
[2012.08.20 19:51:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Posta
[2012.10.02 15:50:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProtectDISC
[2012.02.17 14:40:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Publish Providers
[2012.07.22 19:22:45 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Rajce
[2012.10.20 19:00:11 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Real
[2012.02.16 20:57:10 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\RealNetworks
[2012.10.02 12:56:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Rovio
[2012.03.07 19:49:16 | 000,000,000 | RH-D | M] -- C:\Users\Jakub\AppData\Roaming\SecuROM
[2012.02.22 14:56:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SFBot
[2012.02.27 19:22:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SkyMonk
[2012.12.30 14:38:36 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Skype
[2012.03.05 22:55:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Solveig Multimedia
[2012.07.03 19:08:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sony
[2012.04.05 13:57:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sony Corporation
[2012.06.29 19:39:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sony Creative Software Inc
[2012.06.08 19:36:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SplitMediaLabs
[2012.06.06 12:56:36 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.09.12 19:17:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Student dog
[2012.07.14 18:07:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Synaptics
[2012.12.06 00:01:56 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.05.13 20:16:27 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.02.10 14:20:53 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TightVNC
[2012.10.03 12:45:09 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ts3overlay
[2012.12.29 17:30:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\uTorrent
[2012.12.26 11:54:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\vlc
[2012.08.29 19:23:53 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.09.11 19:33:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\wargaming.net
[2012.11.09 20:45:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\WildTangent
[2012.02.17 20:48:36 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Windows Live Writer
[2012.02.10 13:20:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2012.02.16 14:39:46 | 000,093,696 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\ezpinst.exe
[2012.06.14 03:08:56 | 027,595,032 | ---- | M] (Dropbox, Inc.) -- C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2012.06.14 03:09:00 | 000,874,440 | ---- | M] (Dropbox, Inc.) -- C:\Users\Jakub\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2012.06.14 03:09:06 | 000,181,776 | ---- | M] (Dropbox, Inc.) -- C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Uninstall.exe
[2012.03.26 13:54:38 | 001,832,448 | ---- | M] (Mozilla Gecko Tab) -- C:\Users\Jakub\AppData\Roaming\Chrome\Extension\firefoxtab\core\GeckoTab_core.exe
[2012.12.02 19:00:47 | 000,053,664 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Jakub\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2012.03.30 17:56:58 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2012.08.14 11:26:19 | 040,322,472 | ---- | M] (COMPELSON Laboratories ) -- C:\Users\Jakub\AppData\Roaming\MOBILedit\MOBILEditUpdate.exe
[2012.08.13 13:51:17 | 000,158,000 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\Thunderbird\Profiles\aqfafplp.default\FlashGot.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012.12.30 14:10:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.30 14:03:10 | 000,000,946 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.12.30 14:12:14 | 000,000,950 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.11.25 01:03:05 | 000,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001Core.job
[2012.12.30 14:03:53 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.12.30 14:02:40 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"BatteryCare" = C:\Program Files (x86)\BatteryCare\BatteryCare.exe -- [2012.12.03 14:15:36 | 000,740,864 | ---- | M] (Filipe Lourenço)
"GoogleChromeAutoLaunch_7B684F571039795D9613652596821858" = "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window -- [2012.12.05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2010.11.21 04:24:51 | 001,475,584 | ---- | M] (Microsoft Corporation)
"365dni" = C:\Program Files (x86)\365dni\365dniNET.exe -- [2010.05.13 14:41:10 | 000,858,624 | ---- | M] (Microsoft)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.07.27 19:45:56 | 000,913,888 | ---- | M] (Mozilla Corporation) MD5=3F677172F23FC17283D9BCE4B42E3F65 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.11.14 03:56:04 | 000,757,296 | ---- | M] (Microsoft Corporation) MD5=0D286C0FE561D1A7EB30E83A0FF305B2 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2012.12.05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) MD5=2D08AC1443FFA7FBED9A5EA5FD49AEB3 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.12.30 14:16:20 | 000,000,512 | ---- | M] () MD5=706E7361CFA7B93E06E008FAB704E4D0 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012.04.27 08:07:44 | 000,495,104 | ---- | M] () -- \Program Files (x86)\ophcrack\ophcrack.exe
[2012.05.24 17:35:08 | 000,000,057 | ---- | M] () -- \Program Files (x86)\ophcrack\ophcrack.url
[2012.04.27 08:13:46 | 001,835,271 | ---- | M] () -- \Program Files (x86)\ophcrack\ophcrack_nogui.exe
[1 \Program Files (x86)\ophcrack\pwdump\*.tmp files -> \Program Files (x86)\ophcrack\pwdump\*.tmp -> ]
[2012.05.24 17:34:53 | 000,000,990 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\ophcrack\ophcrack.lnk
[2012.05.24 17:34:53 | 000,000,990 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\ophcrack\ophcrack.lnk
[2012.05.24 21:13:26 | 000,000,287 | ---- | M] () -- \Users\Jakub\AppData\Local\VirtualStore\Program Files (x86)\ophcrack\.ophcrackrc
[2012.06.05 20:06:54 | 000,000,212 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Adobe Photoshop CS5 Extended (Crack + Instructions).1.torrent
[2012.06.05 20:08:02 | 000,000,212 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Adobe Photoshop CS5 Extended (Crack + Instructions).2.torrent
[2012.02.17 13:07:42 | 000,000,212 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Adobe Photoshop CS5 Extended (Crack + Instructions).torrent
[2012.03.12 07:01:54 | 000,002,305 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Hide Folders 2009 (v3.5) + Crack [ChattChitto RG].1.torrent
[2012.02.28 22:48:02 | 000,002,305 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Hide Folders 2009 (v3.5) + Crack [ChattChitto RG].torrent
[2012.02.11 09:53:32 | 000,007,847 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Mafia.II.Crack.Only-SKIDROW.torrent
[2012.11.11 12:33:33 | 000,018,568 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Mirrors.Edge.Update.Crack.1.01-RELOADED.torrent
[2012.05.24 18:43:52 | 530,579,456 | ---- | M] () -- \Users\Jakub\Desktop\Zálohy instalátorů\OPHcrack\ophcrack-vista-livecd-3.4.0.iso
[2012.05.25 12:27:23 | 445,644,800 | ---- | M] () -- \Users\Jakub\Desktop\Zálohy instalátorů\OPHcrack\ophcrack-xp-livecd-3.4.0.iso
[2012.05.24 17:34:53 | 000,000,972 | ---- | M] () -- \Users\Public\Desktop\ophcrack.lnk

< *keygen* /s >
[2010.05.01 02:24:54 | 000,063,365 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Photoshop CS5.1\keygen.exe
[2012.10.13 10:55:50 | 000,077,179 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\javax\crypto\KeyGenerator.html
[2012.10.13 10:59:54 | 000,002,272 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\security\spec\RSAKeyGenParameterSpec.java
[2012.10.13 10:59:47 | 000,008,568 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\javax\crypto\KeyGenerator.java
[2012.10.13 10:59:48 | 000,002,696 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\javax\crypto\KeyGeneratorSpi.java
[2012.10.13 10:59:59 | 000,003,182 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\org\apache\harmony\crypto\tests\javax\crypto\KeyGeneratorSpiTest.java
[2012.10.13 10:59:48 | 000,019,346 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\org\apache\harmony\crypto\tests\javax\crypto\KeyGeneratorTest.java
[2012.10.13 10:59:49 | 000,001,240 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\org\apache\harmony\crypto\tests\javax\crypto\func\KeyGeneratorFunctionalTest.java
[2012.10.13 10:59:48 | 000,002,357 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\org\apache\harmony\crypto\tests\javax\crypto\func\KeyGeneratorThread.java
[2012.10.13 10:59:54 | 000,001,990 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\org\apache\harmony\crypto\tests\support\MyKeyGeneratorSpi.java
[2012.04.16 17:45:38 | 000,016,649 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Artisteer 3.1.0.46558+Keygen Web Design-DeGun-TPB 2011.torrent
[2012.03.18 14:14:06 | 000,001,693 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\FastAccess Pro Facial Recognition 3.001.055 - Incl KEYGEN & ACTIVATOR - Log in to Windows and Web sites using.rar.torrent
[2012.05.17 18:35:12 | 000,004,952 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\ImTOO HD Video Converter v5.1 Incl. Keygen.torrent
[2012.02.17 13:11:35 | 000,030,720 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Sony Vegas PRO 10.0c+Keygen(works with windows7) [ kk ].torrent
[2012.07.03 18:31:12 | 000,017,844 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.1.torrent
[2012.07.02 18:35:32 | 000,017,844 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.torrent
[2012.10.12 13:48:43 | 000,000,303 | ---- | M] () -- \Users\Jakub\AppData\Roaming\uTorrent\Sygic Mobile Maps 10(v.8.06)KEYGEN.torrent
[2010.09.06 23:00:00 | 005,518,848 | ---- | M] () -- \Users\Jakub\Desktop\Zálohy instalátorů\Adobe Photoshop CS5\Photoshop\Photoshopcs5Keygen\Photoshopcs5Keygen.exe
[2011.11.30 18:40:38 | 002,000,896 | ---- | M] () -- \Users\Jakub\Desktop\Zálohy instalátorů\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch\Keygen and Patch\Keygen and Patch\Digital Insanity Sony Keygen.exe

< *loader* /s >
[2012.05.04 21:15:18 | 000,127,464 | ---- | M] () -- \Program Files (x86)\Acer\Acer Crystal Eye Webcam\Koan\pyloader.dll
[2012.05.04 21:14:46 | 000,021,172 | ---- | M] () -- \Program Files (x86)\Acer\Acer Crystal Eye Webcam\subsys\Uploader\PyUploader.kc
[2012.05.07 17:19:56 | 000,233,960 | ---- | M] () -- \Program Files (x86)\Acer\Acer Crystal Eye Webcam\subsys\Uploader\_PyUploader.pyd
[2011.03.02 20:35:42 | 005,299,048 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 17:57:10 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011.09.22 11:23:52 | 000,006,746 | ---- | M] () -- \Program Files (x86)\Artisteer 3\Library\Images\loaderAnim.gif
[2011.09.22 11:23:52 | 000,000,477 | ---- | M] () -- \Program Files (x86)\Artisteer 3\Library\Images\loaderAnim2.gif
[2011.09.22 11:23:52 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Artisteer 3\Library\Images\loaderSnake.gif
[2009.04.02 21:23:53 | 000,013,833 | ---- | M] () -- \Program Files (x86)\City interactive\MOTORM4X Offroad Extreme\media\texts\texts_loader.xml
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.03.24 11:42:36 | 000,470,840 | ---- | M] () -- \Program Files (x86)\DVBViewer Demo\DVBVDownloaderDemo.exe
[2009.05.21 20:21:18 | 000,007,507 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\HelpViewer\Resources\Loader.swf
[2009.09.20 12:15:26 | 000,030,776 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\RsrcLoaderLib.dll
[2009.09.20 12:15:26 | 000,002,713 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\MozillaAddOn3\xre\components\uriloader.xpt
[2012.10.13 10:42:23 | 000,000,948 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2012.10.13 10:42:23 | 000,000,411 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2012.10.13 10:42:26 | 001,170,520 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\modules\org-openide-loaders.jar
[2012.10.13 10:42:25 | 000,006,244 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2012.10.13 10:42:25 | 000,005,873 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2012.10.13 10:42:26 | 000,000,457 | ---- | M] () -- \Program Files (x86)\Java\jdk1.7.0_07\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2005.10.14 01:49:48 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 01:49:48 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2011.10.17 13:10:26 | 000,071,528 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011.10.17 12:14:50 | 000,074,600 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2011.11.06 10:09:52 | 000,083,816 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2011.11.10 14:55:50 | 000,089,448 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2011.09.09 19:18:39 | 018,632,952 | ---- | M] () -- \Program Files (x86)\Sony Media Go Install\PSNDownloaderSetup.exe
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2012.05.21 22:56:04 | 000,002,196 | ---- | M] () -- \Program Files (x86)\WildTangent Games\App\UI\GamePlay_Loader.html
[2012.07.19 00:18:28 | 000,000,598 | ---- | M] () -- \Program Files (x86)\WildTangent Games\App\UI\EULA\images\downloader_bg_400.gif
[2012.05.21 22:56:04 | 000,009,085 | ---- | M] () -- \Program Files (x86)\WildTangent Games\App\UI\Scripts\gameplay_loader.js
[2010.11.03 22:17:00 | 000,002,355 | ---- | M] () -- \Program Files (x86)\WildTangent Games\App\UI\Skins\default\gameplay_loader.css
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.06.09 18:19:37 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.11.24 19:13:01 | 000,001,082 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer Demo\DVBViewer Pro DEMO Downloader.lnk
[2012.02.16 20:56:03 | 000,007,715 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2012.02.16 20:56:03 | 000,000,319 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2012.10.19 15:48:08 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.10.19 15:48:08 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.10.19 15:48:08 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2012.11.24 19:13:01 | 000,001,082 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\DVBViewer Demo\DVBViewer Pro DEMO Downloader.lnk
[2012.02.16 20:56:03 | 000,007,715 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2012.02.16 20:56:03 | 000,000,319 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2012.10.19 15:48:08 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.10.19 15:48:08 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.10.19 15:48:08 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2012.10.13 10:54:41 | 000,075,103 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\guide\components\loaders.html
[2012.10.13 10:54:27 | 000,082,309 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\android\app\LoaderManager.html
[2012.10.13 10:55:09 | 000,067,501 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\android\content\Loader.ForceLoadContentObserver.html
[2012.10.13 10:55:06 | 000,080,633 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\android\support\v4\content\AsyncTaskLoader.html
[2012.10.13 10:54:21 | 000,094,121 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\android\support\v4\content\Loader.html
[2012.10.13 10:55:23 | 000,098,083 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\android\test\LoaderTestCase.html
[2012.10.13 10:55:47 | 000,075,308 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\java\util\ServiceLoader.html
[2012.10.13 10:55:03 | 000,052,965 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\javax\xml\validation\SchemaFactoryLoader.html
[2012.10.13 10:55:18 | 000,044,365 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\reference\junit\runner\TestSuiteLoader.html
[2012.10.13 10:55:06 | 000,019,083 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\resources\samples\ApiDemos\src\com\example\android\apis\app\LoaderThrottle.java
[2012.10.13 10:54:35 | 000,007,624 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\resources\samples\Support4Demos\src\com\example\android\supportv4\app\LoaderCursorSupport.java
[2012.10.13 10:55:46 | 000,028,418 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\resources\samples\XmlAdapters\src\com\example\android\xmladapters\ImageDownloader.html
[2012.10.13 10:54:55 | 000,014,073 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\resources\samples\XmlAdapters\src\com\example\android\xmladapters\ImageDownloader.java
[2012.10.13 10:55:21 | 000,006,423 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\sdk\api_diff\16\changes\android.content.Loader.html
[2012.10.13 10:54:49 | 000,004,966 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\docs\sdk\api_diff\9\changes\dalvik.system.PathClassLoader.html
[2012.10.13 10:58:35 | 000,000,679 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw\loaderror.html
[2012.10.13 10:58:21 | 000,000,659 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-ar\loaderror.html
[2012.10.13 10:58:24 | 000,000,682 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-cs\loaderror.html
[2012.10.13 10:58:35 | 000,000,612 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-da\loaderror.html
[2012.10.13 10:58:34 | 000,000,605 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-de\loaderror.html
[2012.10.13 10:58:31 | 000,000,579 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-en-rGB\loaderror.html
[2012.10.13 10:58:32 | 000,000,607 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-es\loaderror.html
[2012.10.13 10:58:26 | 000,000,633 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-fi\loaderror.html
[2012.10.13 10:58:31 | 000,000,613 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-fr\loaderror.html
[2012.10.13 10:58:22 | 000,000,628 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-hu\loaderror.html
[2012.10.13 10:58:23 | 000,000,622 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-it\loaderror.html
[2012.10.13 10:58:29 | 000,000,654 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-iw\loaderror.html
[2012.10.13 10:58:26 | 000,000,656 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-ja\loaderror.html
[2012.10.13 10:58:23 | 000,000,648 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-ko\loaderror.html
[2012.10.13 10:58:22 | 000,000,592 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-nl\loaderror.html
[2012.10.13 10:58:29 | 000,000,628 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-pl\loaderror.html
[2012.10.13 10:58:31 | 000,000,676 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-pt-rBR\loaderror.html
[2012.10.13 10:58:34 | 000,000,617 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-rm\loaderror.html
[2012.10.13 10:58:27 | 000,000,705 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-ru\loaderror.html
[2012.10.13 10:58:35 | 000,000,678 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-th\loaderror.html
[2012.10.13 10:58:31 | 000,000,570 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-tr\loaderror.html
[2012.10.13 10:58:23 | 000,000,556 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-zh-rCN\loaderror.html
[2012.10.13 10:58:36 | 000,000,635 | ---- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\platforms\android-15\data\res\raw-zh-rTW\loaderror.html
[2012.10.13 10:59:12 | 000,006,874 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\samples\android-15\ApiDemos\src\com\example\android\apis\app\LoaderCursor.java
[2012.10.13 10:59:11 | 000,017,034 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\samples\android-15\ApiDemos\src\com\example\android\apis\app\LoaderCustom.java
[2012.10.13 10:59:11 | 000,019,083 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\samples\android-15\ApiDemos\src\com\example\android\apis\app\LoaderThrottle.java
[2012.10.13 10:59:11 | 000,014,054 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\samples\android-15\XmlAdapters\src\com\example\android\xmladapters\ImageDownloader.java
[2012.10.13 10:59:55 | 000,002,335 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\app\ApplicationLoaders.java
[2012.10.13 10:59:48 | 000,035,496 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\app\LoaderManager.java
[2012.10.13 10:59:53 | 000,010,942 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\content\AsyncTaskLoader.java
[2012.10.13 10:59:53 | 000,006,955 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\content\CursorLoader.java
[2012.10.13 10:59:51 | 000,015,862 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\content\Loader.java
[2012.10.13 11:00:05 | 000,011,876 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\core\ClassLoaderTest.java
[2012.10.13 11:00:06 | 000,034,727 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\support\v4\app\LoaderManager.java
[2012.10.13 10:59:53 | 000,010,356 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\support\v4\content\AsyncTaskLoader.java
[2012.10.13 11:00:05 | 000,006,561 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\support\v4\content\CursorLoader.java
[2012.10.13 11:00:05 | 000,013,444 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\support\v4\content\Loader.java
[2012.10.13 10:59:51 | 000,003,941 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\test\LoaderTestCase.java
[2012.10.13 10:59:54 | 000,002,639 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\CacheLoader.java
[2012.10.13 10:59:54 | 000,003,264 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\ContentLoader.java
[2012.10.13 10:59:54 | 000,002,494 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\DataLoader.java
[2012.10.13 10:59:54 | 000,007,788 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\FileLoader.java
[2012.10.13 11:00:05 | 000,016,709 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\FrameLoader.java
[2012.10.13 10:59:53 | 000,007,226 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\android\webkit\StreamLoader.java
[2012.10.13 10:59:53 | 000,003,894 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\dumprendertree2\TestsListPreloaderThread.java
[2012.10.13 10:59:50 | 000,009,796 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\internal\telephony\AdnRecordLoader.java
[2012.10.13 10:59:47 | 000,011,868 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\internal\telephony\cat\IconLoader.java
[2012.10.13 10:59:53 | 000,013,896 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\layoutlib\bridge\impl\FontLoader.java
[2012.10.13 10:59:53 | 000,005,917 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\server\location\GpsXtraDownloader.java
[2012.10.13 10:59:59 | 000,012,748 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\com\android\systemui\recent\RecentTasksLoader.java
[2012.10.13 10:59:54 | 000,030,125 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\lang\ClassLoader.java
[2012.10.13 10:59:55 | 000,003,058 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\lang\VMClassLoader.java
[2012.10.13 11:00:03 | 000,037,216 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\net\URLClassLoader.java
[2012.10.13 10:59:53 | 000,005,549 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\security\SecureClassLoader.java
[2012.10.13 11:00:02 | 000,009,736 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\java\util\ServiceLoader.java
[2012.10.13 10:59:47 | 000,001,291 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\javax\xml\validation\SchemaFactoryLoader.java
[2012.10.13 11:00:04 | 000,000,539 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\junit\runner\ReloadingTestSuiteLoader.java
[2012.10.13 11:00:03 | 000,000,544 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\junit\runner\StandardTestSuiteLoader.java
[2012.10.13 11:00:05 | 000,005,610 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\junit\runner\TestCaseClassLoader.java
[2012.10.13 11:00:02 | 000,000,286 | R--- | M] () -- \Users\Jakub\AppData\Local\Android\android-sdk\sources\android-15\junit\runner\TestSuiteLoader.java
[2012.03.09 20:45:21 | 000,000,445 | ---- | M] () -- \Users\Jakub\AppData\Local\Downloader\Downloader.ini
[2012.12.21 20:07:31 | 000,010,000 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja\2.6.14_0\script\Chrome-YouTube-Downloader.js
[2012.10.13 10:50:35 | 000,013,317 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\14_0\images\1024\page\loader-logo.png
[2012.11.18 21:45:13 | 000,001,849 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhfkcobomkalfdlmkongnhnhahkmnaad\1.1.1_0\lib\SlickGrid\images\ajax-loader-small.gif
[2012.03.17 09:42:39 | 000,000,404 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\idfmgklhndkcggamadboiaepmohpjhjj\1.0.5_0\img\loader.png
[2012.12.28 17:52:29 | 000,000,347 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\1.4.5_0\js\contentScripts\flashvideodownloader.js
[2012.11.18 21:45:01 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpgjmggepafkhenaeknpnjiceakbedpi\2.3.18.20_0\Media\ajax-loader.gif
[2012.11.08 22:09:46 | 000,014,290 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\oglbipcbkmlknhfhabolnniekmlhfoek\2.0.0_0\javascripts\flattrLoader.js
[2012.12.06 21:12:13 | 000,008,780 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\omioeahgfecgfpfldejlnideemfidnkc\3.4.20_0\loader_bin.js
[2012.11.04 20:43:58 | 000,738,570 | ---- | M] () -- \Users\Jakub\AppData\Local\HTC MediaHub\htcSyncLoader.bmp
[2012.03.20 07:23:25 | 000,000,843 | ---- | M] () -- \Users\Jakub\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fflashvideodownloader.org%2Ffvd-suite%2Fsystem%2Fapplication%2Fviews%2Fthemes%2Ffvd%2Ffavicon.png
[2012.03.17 09:29:50 | 000,040,660 | ---- | M] () -- \Users\Jakub\AppData\Local\Opera\Opera\widgets\fastesttube-youtube-video-downloader-1.5.4-1.oex
[2012.08.03 12:59:39 | 000,001,052 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\ModLoader.txt
[2012.08.03 12:59:34 | 000,000,126 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2012.11.04 20:44:20 | 245,184,699 | ---- | M] () -- \Users\Jakub\AppData\Roaming\HTC Sync\htcSyncLoader.dmp
[2012.01.12 01:09:00 | 000,010,144 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules\ExternalLibraryLoader.jsm
[2012.03.08 11:52:48 | 000,010,145 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\conduitCommon\modules\3.10.0.1\ExternalLibraryLoader.jsm
[2012.01.12 01:09:00 | 000,010,144 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\conduitCommon\modules\3.9.0.3\ExternalLibraryLoader.jsm
[2012.11.19 22:38:12 | 000,010,145 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules\ExternalLibraryLoader.jsm
[2012.12.16 11:47:38 | 000,010,145 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\modules\ExternalLibraryLoader.jsm
[2011.11.15 14:24:18 | 000,006,927 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\content\loader.js
[2011.11.15 14:24:18 | 000,005,604 | ---- | M] () -- \Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\windows\loader.js
[2012.04.02 12:52:06 | 000,046,467 | ---- | M] () -- \Users\Jakub\Desktop\Hry\Minecraft\Módy\Používané\ModLoader\ModLoader.class
[2009.02.07 13:54:14 | 000,008,238 | ---- | M] () -- \Users\Jakub\Desktop\PSP složky\PSP\COMMON\pspchrome\loader.gif
[2011.03.04 08:18:28 | 000,045,986 | ---- | M] () -- \Users\Jakub\Desktop\PSP složky\PSP\GAME\Programy\iso_tool\DATA\iso2eboot\loader.elf
[2011.03.04 08:18:28 | 000,146,814 | ---- | M] () -- \Users\Jakub\Desktop\PSP složky\PSP\GAME\Programy\iso_tool\DATA\iso2icon\PIL_loader.elf
[2012.12.18 20:35:50 | 000,015,528 | ---- | M] () -- \Windows\assembly\tmp\40JVKJOD\Microsoft.Office.Infopath.CLRLoader.dll
[2012.12.18 21:10:42 | 000,015,528 | ---- | M] () -- \Windows\assembly\tmp\HHURJ1IO\Microsoft.Office.Infopath.CLRLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109110000000000000000F01FEC\14.0.6029\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.10.07 04:36:40 | 000,265,552 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109110000000000000000F01FEC\14.0.6029\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.10.07 04:36:40 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.10.07 04:36:40 | 000,265,552 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012.04.26 13:26:34 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012.04.26 13:26:34 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:04:21 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:44:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_68ce27a99276afec\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:00:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:40:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_694ff566ab99b7ac\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.10.09 00:39:02 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2011.10.09 00:39:02 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2011.10.09 00:39:02 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2011.10.09 00:39:02 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2011.10.09 00:39:02 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2011.07.14 06:25:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.07.14 06:25:44 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2011.07.14 06:25:44 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2011.07.14 06:25:44 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2011.07.14 06:25:44 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2011.10.09 00:34:44 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 04:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.07.14 06:25:40 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.07.14 06:25:40 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 07:13:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 06:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 971 bytes -> C:\ProgramData:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
@Alternate Data Stream - 343 bytes -> C:\ProgramData\Temp:8927A071
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:24051EFF
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:B468194E

< End of report >

Re: Preventivne

Napsal: 30 pro 2012 15:04
od kouzelnik3
OTL Extras logfile created on: 30.12.2012 14:10:29 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,68 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 28,24% Memory free
7,36 Gb Paging File | 3,92 Gb Available in Paging File | 53,25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 200,72 Gb Total Space | 68,14 Gb Free Space | 33,95% Space Free | Partition Type: NTFS
Drive H: | 482,82 Gb Total Space | 411,65 Gb Free Space | 85,26% Space Free | Partition Type: NTFS

Computer Name: KOUZELNIK | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.inf[@ = inffile] -- Reg Error: Key error. File not found
.ini[@ = inifile] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.txt[@ = txtfile] -- Reg Error: Key error. File not found
.vbe[@ = VBEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.inf [@ = inffile] -- Reg Error: Key error. File not found
.ini [@ = inifile] -- Reg Error: Key error. File not found
.js [@ = JSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.txt [@ = txtfile] -- Reg Error: Key error. File not found
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- Reg Error: Value error.
batfile [open] -- "%1" %*
batfile [print] -- Reg Error: Value error.
cmdfile [edit] -- Reg Error: Value error.
cmdfile [open] -- "%1" %*
cmdfile [print] -- Reg Error: Value error.
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- Reg Error: Key error.
inffile [print] -- Reg Error: Key error.
inifile [open] -- Reg Error: Key error.
inifile [print] -- Reg Error: Key error.
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Value error.
jsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- Reg Error: Value error.
jsefile [edit] -- Reg Error: Value error.
jsefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [edit] -- Reg Error: Key error.
regfile [merge] -- Reg Error: Key error.
regfile [print] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- Reg Error: Key error.
txtfile [print] -- Reg Error: Key error.
txtfile [printto] -- Reg Error: Key error.
vbefile [edit] -- Reg Error: Value error.
vbefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- Reg Error: Value error.
vbsfile [edit] -- Reg Error: Value error.
vbsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- Reg Error: Value error.
wsffile [edit] -- Reg Error: Key error.
wsffile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
wsffile [print] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- Reg Error: Value error.
batfile [open] -- "%1" %*
batfile [print] -- Reg Error: Value error.
cmdfile [edit] -- Reg Error: Value error.
cmdfile [open] -- "%1" %*
cmdfile [print] -- Reg Error: Value error.
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [open] -- Reg Error: Key error.
inffile [print] -- Reg Error: Key error.
inifile [open] -- Reg Error: Key error.
inifile [print] -- Reg Error: Key error.
jsfile [edit] -- Reg Error: Value error.
jsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- Reg Error: Value error.
jsefile [edit] -- Reg Error: Value error.
jsefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- Reg Error: Value error.
piffile [open] -- "%1" %*
regfile [edit] -- Reg Error: Key error.
regfile [merge] -- Reg Error: Key error.
regfile [print] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- Reg Error: Key error.
txtfile [print] -- Reg Error: Key error.
txtfile [printto] -- Reg Error: Key error.
vbefile [edit] -- Reg Error: Value error.
vbefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- Reg Error: Value error.
vbsfile [edit] -- Reg Error: Value error.
vbsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- Reg Error: Value error.
wsffile [edit] -- Reg Error: Key error.
wsffile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
wsffile [print] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02C188B5-8E13-4147-98FF-99AACA33F69B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{03670E78-B6CD-4845-BB33-48F963CAE030}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{049647B2-9AC6-48E9-B12F-75825D7CC57A}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{100911AD-C116-4032-9F2A-2A34E4727F86}" = lport=139 | protocol=6 | dir=in | app=system |
"{1E75F3CA-6064-4C19-98E5-221F3582AD77}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2733139D-DCD3-463D-B1DB-DDB6C273250A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2BA58CE7-ECCB-41B8-81D8-FAB132B1D675}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{35D60B78-C1AD-428E-B186-EEFCB59041F3}" = rport=138 | protocol=17 | dir=out | app=system |
"{3D0B685F-1E25-4D7D-8238-1A78EDB59860}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{41C9E2F2-57D8-4148-86D9-F7122B13F7E7}" = lport=138 | protocol=17 | dir=in | app=system |
"{55B15FF2-5E37-48EA-BAC7-9ADCB087924C}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{5F617128-B889-4FB5-B13D-30E86D7CDEEC}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{61920C10-81E2-475E-94E0-EB70C250BB3F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6AE7EF71-872C-4CA6-A628-16361000BF46}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{75024FBA-F984-430F-9D1B-347B6CBBB3AA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{7E3490A3-D578-4DD7-B7E7-09B548E72B0C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{85B6E5E2-D525-4403-A085-4946FF04EE29}" = lport=3306 | protocol=6 | dir=in | name=mysql |
"{865937FB-A4B9-48DF-A120-C3967A664B48}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=%systemroot%\system32\svchost.exe |
"{876D8F45-7334-464A-918D-785D77BEBECF}" = lport=445 | protocol=6 | dir=in | app=system |
"{8C900C07-3F34-4326-B296-19D3773CE624}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{97C8F950-7AAD-49AD-BC5E-EFF31B48320C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9FB82848-5ACF-4525-AA3A-0B30C3B028CE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AEA9D353-5098-44AD-95AA-BAE9313C9CFE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B251F753-AF1A-49B0-9EE6-A4A1C7A3711C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B44685D5-1EDD-4FD8-A1DE-B79C7A27A671}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C50171CC-8332-49C6-B73A-900019D19B81}" = rport=445 | protocol=6 | dir=out | app=system |
"{C570ED44-1818-4530-9452-C258E176008C}" = rport=137 | protocol=17 | dir=out | app=system |
"{CCAF354B-CAD3-4E1A-9DED-85412FBC81D8}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CD25F10F-5746-4757-BFED-BABFE8DB590A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8DC3EC8-2462-4935-855B-AB9406A78EAD}" = lport=10243 | protocol=6 | dir=in | app=system |
"{DFFB1F0F-5B47-4C21-9C35-E5EF7824F6EE}" = lport=137 | protocol=17 | dir=in | app=system |
"{E5EFC4D3-0972-4175-ACAC-9C7751FEF754}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EA1F079E-A340-4E08-B20C-E19C5BA9C6E7}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{EB9AC76A-1FF7-4323-934A-9CD42ED72B41}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F07B16C8-648A-4DEA-AECF-C6CF93EA8027}" = rport=139 | protocol=6 | dir=out | app=system |
"{FD0BAD57-79B4-424B-9FAD-F5BBA7485CB7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FE28A06A-10EC-4DEE-9FAD-74A0551D99D5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01DE6358-F8AD-4F89-89E8-A405D613D1C4}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{0581FF6C-0F47-49D7-BFA4-AA86D85846B1}" = dir=out | app=%programfiles% (x86)\adobe\adobe photoshop cs5.1\photoshop.exe |
"{07564E5D-5899-4FEB-AD2A-6A47952A0ED8}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{096D39BD-B87E-4528-8ADF-9F72B87DACFC}" = protocol=17 | dir=in | app=h:\tmunitedforever\tmforever.exe |
"{0FCE24D2-8338-421E-8836-6F12233DC24F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{15C04CBF-82A1-4687-989D-C321ECD91452}" = protocol=6 | dir=in | app=h:\mirror's edge\binaries\mirrorsedge.exe |
"{19952DEF-FF81-4B86-8C93-8533FB0A5EF8}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{19EF9C7C-9CBE-4ABC-BD35-1D29CC0BC7FC}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla thunderbird\thunderbird.exe |
"{2197457E-94BB-4FD4-BA13-DA1DFF9C4DB2}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{234EAEC8-7309-4DB9-8EC2-D4F834646804}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{24D6C662-50DB-4D63-A9F5-3E36271EA0E4}" = protocol=17 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"{27B9D2F5-09A5-43C1-AA14-10DF736D98BE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{2DE25F0B-A92A-4367-83EC-4E7D9002E61C}" = protocol=6 | dir=in | app=c:\program files (x86)\tightvnc\vncviewer.exe |
"{35A90822-CD72-485E-A951-EC3FF2206F31}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{35DB23DB-22D8-48B9-A554-F3076D52314A}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{3774F6A6-24C2-4A86-8B9E-3C69EC101A11}" = dir=in | app=c:\program files (x86)\htc\htc sync manager\htcsyncmanager.exe |
"{39A380A0-2B7C-43F3-BA84-8BE426EFCDB9}" = protocol=17 | dir=in | app=c:\users\jakub\appdata\roaming\dropbox\bin\dropbox.exe |
"{3A6791CA-8132-460A-881D-F226604AE4BD}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{3A73D325-E6BD-4AD8-98D6-900F474632CB}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{3DD20267-3E6A-4FE8-AB3D-D3A751636D9E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
"{3E1D7BAD-3146-40C3-AC0D-5C5DBE7A2EF1}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{3E5FC760-D365-41AE-9612-4C330F3A90E6}" = protocol=17 | dir=in | app=c:\users\jakub\appdata\roaming\dropbox\bin\dropbox.exe |
"{4035350B-6F34-4D0E-B15F-82D4298C784E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{45615F58-B588-47BF-8FBA-17A88C376E18}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"{474BC9C5-6215-4C2F-9A4E-8E87C4D96ABF}" = protocol=6 | dir=out | app=system |
"{4B838214-C61C-4F9C-BB14-140085C64617}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{52DF2085-BE04-41C3-AD28-3624BB5457C9}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{53EA5EE9-040C-468F-A99D-7C1E594EE472}" = protocol=6 | dir=in | app=c:\program files (x86)\tightvnc\tvnserver.exe |
"{60D31CDB-78CE-490C-AD54-CCD3303BDDC2}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{66D553BF-A194-4B9D-B5B5-3078A26FECF0}" = protocol=6 | dir=in | app=c:\users\jakub\appdata\roaming\dropbox\bin\dropbox.exe |
"{68ABD978-2761-4A46-8F75-9074AEA07B17}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{6B2FEDC1-777C-4427-9986-7EEC39C01BAF}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{6C152E9A-0C29-4C9E-9721-FA813F37DA42}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{6C4D08E6-EF13-4F44-A6E2-551FDBE6E187}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{712B329D-F3DA-4616-90FF-ED2A2A7D0DD4}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{71C07DEB-6DB5-4481-A206-102CE0467D90}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{71D7A113-4529-4323-B1C7-C9F8402C07E6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{7240D506-6020-4496-AF51-67A8CCD4C1F1}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{74E71FEE-57BA-4A39-BD32-F3518A788CF5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7A09DCD5-9A67-4732-A251-589E975AC2C7}" = protocol=17 | dir=in | app=h:\dota2\steamapps\common\dota 2 beta\dota.exe |
"{7A5786C5-F88A-4714-A0F8-235D21AB8938}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{7D485562-1F05-4823-BDC9-73AB6AC1ADCC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{7DE0B8C9-485F-4BEB-B8EC-49ECAB1912C8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7E2AD452-8582-4FA6-BD3A-0B998340C155}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{80BA634C-D705-40C2-98C5-79729E3E1A03}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{81899B97-584C-4FAE-AD6C-280B18BD8777}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{822329E5-E570-440E-8951-B1C1E37E5D2C}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{8AC0B23A-E6FA-4E0D-B84C-3608AFEBCE62}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{8E5D8A8E-4826-4652-B545-CDBA9BC73396}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8F689C2B-160B-4505-AB61-0809E4B8FA52}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{9784D9DF-27E8-4513-BC14-035F3B304AFB}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{9A4EFCD5-0057-489F-A703-D89A8382636B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9E964E02-421E-4B61-8D62-A0C2DF877864}" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{A1DAB2B9-B423-401B-9523-A66F047F3D2A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{A2DB554C-BAF3-46E5-84DB-FDED678BCE10}" = protocol=58 | dir=in | app=system |
"{A5DD2798-9F1D-47D6-9334-16E42A53FFAE}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{A5FF2C4C-F291-4B34-A0C4-39CDE25FEA72}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AD2F4C23-2F40-494D-8466-9FBC62FD1BE8}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{B51FCD4B-6F45-4E9C-A874-7810D1F69B47}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B9752CFF-51FD-415D-9960-0F9BDDFEDE10}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{BB2B774F-CE6F-47D1-834A-90B9FC80711A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{BBB0142B-42A2-4929-AA72-660FA9C8A200}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BCC61F2B-A3C2-4F2F-84DF-A6A0E8623D12}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{BD36373D-0A64-4365-8BB0-6FFD345CC21C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BFC73975-6A13-4448-9DB9-FC0AD167E110}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"{C86065AD-D2FD-4E9C-BC80-C34872DC8E57}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C97833C3-C5C1-4EAE-A4F6-7288F95F5B1B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D22F2913-726E-4567-ADB6-77C491F72A90}" = protocol=17 | dir=in | app=h:\dishonored\binaries\win32\dishonored.exe |
"{D5AB873C-4F49-4C73-8CCA-F16AB4DC6B76}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{D8F7B0CD-2580-4824-A7BD-B7A1427271A2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{D9225300-949F-459F-A0E0-99735B9374DB}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D99330BF-5F09-4932-97A0-3FED34095828}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DB94446F-D300-425D-BD59-5ECC308D2BE4}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{DC128371-5605-43DB-B7EB-A6610754E550}" = protocol=6 | dir=in | app=h:\tmunitedforever\tmforever.exe |
"{E2FCF390-8AF6-4814-8018-2C3BA106A1D9}" = protocol=6 | dir=in | app=h:\dota2\steamapps\common\dota 2 beta\dota.exe |
"{E546C305-57D2-46CC-9A61-B8BD2F966CFF}" = protocol=6 | dir=in | app=h:\dishonored\binaries\win32\dishonored.exe |
"{E880AEBF-6DCD-4B4E-9E3F-E99A3ACC59CB}" = protocol=17 | dir=in | app=c:\program files (x86)\tightvnc\vncviewer.exe |
"{EB66AE44-5BB3-45F6-A249-2E781D73D5DE}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla thunderbird\thunderbird.exe |
"{EC8B3668-14F9-4060-9F73-1466E5DB49AE}" = protocol=17 | dir=in | app=c:\program files (x86)\tightvnc\tvnserver.exe |
"{EF8CA51D-79B9-457C-BA79-60CDB8566F3A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{F129AB78-4555-4740-9E04-F56888BD1456}" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{F17118D9-3FCE-4917-92ED-14AA18938FC5}" = protocol=6 | dir=in | app=c:\users\jakub\appdata\roaming\dropbox\bin\dropbox.exe |
"{F1C794EA-96B9-4268-AC28-472BED1AD8C0}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{F1E88384-39FF-48EE-9577-5CAE14B5D426}" = protocol=17 | dir=in | app=h:\mirror's edge\binaries\mirrorsedge.exe |
"{F3613F22-14E6-4868-B23B-A52294FE0DC6}" = dir=in | app=c:\program files (x86)\tightvnc\tvnserver.exe |
"{F6458819-55A2-4B96-B945-28E910161086}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{FDED7D33-8DEC-4CCE-9434-71B842DDBE4B}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{FE910EAE-F210-4144-8FF1-C7DBC0CBD9DB}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{FE9FE45C-55C4-4889-A005-9DB48E3BD5C4}" = protocol=6 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"TCP Query User{0B68D987-DF01-4D86-8B7C-16693A5C014A}C:\program files (x86)\tmunitedforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tmunitedforever\tmforever.exe |
"TCP Query User{18B50F2E-EB07-4E8A-98D5-877E6279DA1D}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{2F80B15D-AEC6-4299-8665-700343F1B945}H:\dota2\steamapps\common\dota 2 beta\dota.exe" = protocol=6 | dir=in | app=h:\dota2\steamapps\common\dota 2 beta\dota.exe |
"TCP Query User{4DF7CD2B-5A7B-45E4-8EB9-4E3C4B566AB3}H:\tmunitedforever\tmforever.exe" = protocol=6 | dir=in | app=h:\tmunitedforever\tmforever.exe |
"TCP Query User{5E2D4C10-E18A-429D-A159-9333396B4F3A}C:\program files (x86)\mozilla thunderbird\thunderbird.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla thunderbird\thunderbird.exe |
"TCP Query User{6F1B5E65-B5AC-49C6-AD33-14DC42C00A93}C:\windows\ehome\ehexthost.exe" = protocol=6 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"TCP Query User{79649FA8-A87E-4244-9EBC-C243E57A797C}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{8EF6DA44-BADB-4187-872B-55112ADDE2E8}C:\Program Files\Java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{B4008DA0-8BD2-42CB-8F37-CC84391D8E1F}H:\cross racing championship\crc.exe" = protocol=6 | dir=in | app=h:\cross racing championship\crc.exe |
"TCP Query User{D3979120-8768-46D7-A9A8-06B964CE328B}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"TCP Query User{E9E146D7-AC85-4653-BD3A-F07F257C6CD2}H:\dishonored\binaries\win32\dishonored.exe" = protocol=6 | dir=in | app=h:\dishonored\binaries\win32\dishonored.exe |
"UDP Query User{3BB3AEA3-B119-4CFE-87CF-CD9FBEAE3775}C:\Program Files\Java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{6184303A-F19D-429A-9F37-C795EA429067}C:\windows\ehome\ehexthost.exe" = protocol=17 | dir=in | app=c:\windows\ehome\ehexthost.exe |
"UDP Query User{7F517371-6D76-461F-A304-96162AC56F83}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{82E04A23-7CE9-47E3-B720-ADB5C9B1858D}H:\dishonored\binaries\win32\dishonored.exe" = protocol=17 | dir=in | app=h:\dishonored\binaries\win32\dishonored.exe |
"UDP Query User{87AFA8CB-1C53-444A-BDF4-7590D00A544F}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{AD8B3157-2E18-4CD8-9A06-80F1708BB6E6}C:\program files (x86)\tmunitedforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tmunitedforever\tmforever.exe |
"UDP Query User{B2BBB515-889D-45E1-B5C9-DEE6AE17E790}H:\dota2\steamapps\common\dota 2 beta\dota.exe" = protocol=17 | dir=in | app=h:\dota2\steamapps\common\dota 2 beta\dota.exe |
"UDP Query User{CB069B71-E8FA-4AAB-8473-DD025159BD67}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"UDP Query User{CF22513C-4229-4F73-9774-15F0E2FCC316}C:\program files (x86)\mozilla thunderbird\thunderbird.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla thunderbird\thunderbird.exe |
"UDP Query User{F4D74D0A-C7EF-494B-BCD4-F2D67D55CA2C}H:\cross racing championship\crc.exe" = protocol=17 | dir=in | app=h:\cross racing championship\crc.exe |
"UDP Query User{F83045A1-3F18-4F27-BEA1-B820906E3E7E}H:\tmunitedforever\tmforever.exe" = protocol=17 | dir=in | app=h:\tmunitedforever\tmforever.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{02A5BD31-16AC-45DF-BE9F-A3167BC4AFB2}" = Windows Live Family Safety
"{07ECF9FC-BB47-4325-8345-7BFEC708DDD7}" = Digital Cable Advisor
"{0919C44F-F18A-4E3B-A737-03685272CE72}" = Windows Live Remote Service Resources
"{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{1553D712-B35F-4A82-BC72-D6B11A94BE3E}" = Windows Live Remote Service Resources
"{1685AE50-97ED-485B-80F6-145071EE14B0}" = Windows Live Remote Service Resources
"{17A4FD95-A507-43F1-BC92-D8572AF8340A}" = Windows Live Remote Service Resources
"{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1BF5ECDD-47AC-411B-9BC5-96F01346CD7C}" = Windows Live Family Safety
"{1D2596F8-5EDD-4F8A-BA88-734E5549DD72}" = Windows Live Family Safety
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources
"{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
"{2128559D-BBCD-4744-87F0-7C0CD5CFB464}" = Windows Live Family Safety
"{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources
"{230D1595-57DA-4933-8C4E-375797EBB7E1}" = Bluetooth Win7 Suite (64)
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{269F9470-26A4-11E1-83EE-F04DA23A5C58}" = Vegas Pro 11.0 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417005FF}" = Java(TM) 7 Update 5 (64-bit)
"{27B3E5AA-5B75-414A-AC37-F5ADDFA68BDB}" = Windows Live Family Safety
"{287134AD-092F-4BD0-A6F4-911B0B351E87}" = Windows Live Family Safety
"{29AFE1B0-26A4-11E1-BFD4-F04DA23A5C58}" = MSVCRT Redists
"{2C1A6191-9804-4FDC-AB01-6F9183C91A13}" = Windows Live Remote Client Resources
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{350FD0E7-175A-4F86-84EF-05B77FCD7161}" = Windows Live Remote Service Resources
"{365CD415-7644-4EE8-8854-F85038AB9378}" = Windows Live Family Safety
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{3DCF00F5-04A5-4543-A088-70548081120E}_is1" = Compiled Driver Disc (Full) 1.0
"{3F2A8756-C008-43D7-8E1D-7300AA394549}" = Windows Live Family Safety
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{464F7B5E-80BB-4F34-A602-384F0702674A}" = Windows Live Family Safety
"{46CCB0D4-A98F-4009-B5A5-DE38A667D068}" = Windows Live Family Safety
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{48491B19-3759-428B-9560-7AE4697B8FFF}" = Windows Live Family Safety
"{49F6DFDE-8DF7-11E1-9E5F-F04DA23A5C58}" = MSVCRT Redists
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BB3027E-7ABE-43EA-BA1B-9521EF69B530}" = Windows Live Family Safety
"{4C2E49C0-9276-4324-841D-774CCCE5DB48}" = Windows Live Remote Client Resources
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{561AB451-B967-475C-80E0-3B6679C38B52}" = MySQL Server 5.1
"{57F2BD1C-14A3-4785-8E48-2075B96EB2DF}" = Windows Live Remote Service Resources
"{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
"{5ECA80C9-7D7A-49AC-B487-52F1CF47ECEE}" = Windows Live Family Safety
"{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources
"{5FCD6EFE-C2E7-4D77-8212-4BA223D8DF8E}" = Windows Live Remote Client Resources
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources
"{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64
"{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources
"{698EAE05-09DE-47D0-9586-29E41A0934DD}" = Windows Live Family Safety
"{6C9D3F1D-DBBE-46F9-96A0-726CC72935AF}" = Windows Live Remote Service Resources
"{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{702A632F-99CE-4E2D-B8F2-BF980E9CF62F}" = Windows Live Remote Client Resources
"{74AC7ECE-87E1-41F7-ABA2-5ED9B13CECFA}" = Windows Live Family Safety
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7AD6F7FC-9C8A-4413-860C-E0668B7A8E15}" = Windows Live Family Safety
"{7AEC844D-448A-455E-A34E-E1032196BBCD}" = Windows Live Remote Service Resources
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{825C7D3F-D0B3-49D5-A42B-CBB0FBE85E99}" = Windows Live Remote Client Resources
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{850B8072-2EA7-4EDC-B930-7FE569495E76}" = Windows Live Remote Client Resources
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8832CAA2-4934-4916-A8BF-A9A51C6B58B3}" = Windows Live Family Safety
"{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources
"{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources
"{8F7F2D9C-2DBE-4F10-9C7C-2724110A3339}" = Windows Live Remote Service Resources
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{944E73EF-857E-4F71-9DC4-CD059D7ADDEF}" = Windows Live Family Safety
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources
"{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}" = Microsoft SQL Server Native Client
"{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources
"{A060182D-CDBE-4AD6-B9B4-860B435D6CBD}" = Windows Live Remote Client Resources
"{A0CC1C12-528A-42A3-B9A3-10C4F9E65C9E}" = Windows Live Family Safety
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{A508D5A2-3AC1-4594-A718-A663D6D3CF11}" = Windows Live Remote Service Resources
"{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources
"{A6E0F6BE-30AC-4D36-97B0-1AC20E23CB83}" = Windows Live Remote Client Resources
"{A84DB02B-9C2B-4272-9D2D-A80E00A56513}" = Broadcom Gigabit NetLink Controller
"{A97AAE82-84EB-4A32-A54D-41B122E95B46}" = Windows Live Family Safety
"{A986CF32-C1C2-4B53-91AD-78EE027875C7}" = Windows Live Family Safety
"{AAE97E7E-B3A6-42BA-ADA5-04A0E6FD7224}" = Windows Live Family Safety
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B0BF8602-EA52-4B0A-A2BD-EDABB0977030}" = Windows Live Remote Client Resources
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B636C9B9-A3F2-4DCE-ADCC-72E095018385}" = Microsoft SQL Server VSS Writer
"{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources
"{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1" = Phone Drivers Downloader 1.1
"{BFBE6E95-5724-47EC-85A0-74D436AD938F}" = Windows Live Family Safety
"{C504EC13-E122-4939-BD6E-EE5A3BAA5FEC}" = Windows Live Remote Client Resources
"{C61D639C-3A1B-4654-901F-08927C804321}" = Windows Live Family Safety
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{C9608300-11F5-11E0-A64B-0013D3D69929}" = MSVCRT Redists
"{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources
"{CE6D49CE-ED18-47E1-8449-037BC7181450}" = Windows Live Family Safety
"{CFF3C688-2198-4BC3-A399-598226949C39}" = Windows Live Remote Client Resources
"{D0C56275-9E7F-4BE5-AB37-15124BF808F2}" = Windows Live Family Safety
"{D1C1556C-7FF3-48A3-A5D6-7126F0FAFB66}" = Windows Live Remote Client Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EB773820-0871-46A8-9B96-F2B04F8B34F0}" = HP Deskjet All-In-One Driver Software 13.0 Rel. 1
"{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources
"{EFB20CF5-1A6D-41F3-8895-223346CE6291}" = Windows Live Remote Service Resources
"{F20B6800-68D7-48DB-A2EB-26BB7BFD1F77}" = Windows Live Family Safety
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}" = Windows Live Remote Service Resources
"{F71F4E15-C711-4010-B1BD-74EE2618B86F}" = Windows Live Family Safety
"{FAA3933C-6F0D-4350-B66B-9D7F7031343E}" = Windows Live Remote Service Resources
"{FAD0EC0B-753B-4A97-AD34-32AC1EC8DB69}" = Windows Live Remote Client Resources
"{FD41A335-9425-44CB-B1D6-E657C52F7DC6}" = Windows Live Family Safety
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"Elantech" = ETDWare PS/2-x64 7.0.6.5_WHQL
"Hide Folders 2009_is1" = Hide Folders 2009 3.5
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Smart Web Printing" = HP Smart Web Printing 4.51
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Neat Image plug-in for Photoshop_is1" = Neat Image v7.3.0 Demo plug-in for Photoshop (64-bit)
"Recuva" = Recuva
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.20 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0535A238-D489-430E-9851-88E78BF84AAB}" = Messenger Companion
"{0557BBDA-69D3-4FA4-A93C-A5300F7034B4}" = Windows Live Writer
"{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1" = MiniTool Partition Wizard Home Edition 7.5
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{062E4D94-8306-46D5-81B6-45E6AD09C799}" = Windows Live Messenger
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{066219C8-4BE6-46D7-9E01-60FCFA6B32DC}" = Messenger Companion
"{06B05153-97E4-427E-B1A8-E098F6C5E52F}" = Windows Live Essentials
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{082E37F5-3924-4168-A69A-1B6B1FEA587C}" = Messenger Companion
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}" = Windows Liven sähköposti
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail
"{110668B7-54C6-47C9-BAC4-1CE77F156AF5}" = Windows Live Mesh
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{11417707-1F72-4279-95A3-01E0B898BBF5}" = Windows Live Mesh
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar
"{120C160F-F53D-4A15-A873-E79BF5B98B48}" = Windows Live Photo Common
"{1234C1F4-603F-4C34-8796-3544CF8A83F5}" = Facebook Messenger 2.1.4631.0
"{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack
"{12FEC00C-027C-4A34-9AAB-562EDA43DC18}_is1" = MiniTool Partition Wizard Home Edition 5.2
"{133D9D67-D475-4407-AC3C-D558087B2453}" = Windows Live Movie Maker
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A72337E-D126-4BAF-AC89-E6122DB71866}" = Windows Liven valokuvavalikoima
"{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20381A8A-808E-4A53-B6CD-AD2B85E16365}" = Windows Live UX Platform Language Pack
"{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}" = Windows Live UX Platform Language Pack
"{226F0D93-76DE-4F1C-B14D-DE10443ADB60}" = Windows Live Movie Maker
"{249EE21B-8EDD-4F36-8A23-E580E9DBE80A}" = Windows Live Mail
"{24DF33E0-F924-4D0D-9B96-11F28F0D602D}" = Windows Live UX Platform Language Pack
"{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}" = Windows Live Writer
"{2640314A-2D9A-4F58-B501-DB109CD9DBA2}" = DJ_AIO_ProductContext
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{28B9D2D8-4304-483F-AD71-51890A063A74}" = Windows Live Photo Common
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MYMOVIES)
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack
"{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}" = Windows Live Writer Resources
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2F54E453-8C93-4B3B-936A-233C909E6CAC}" = Windows Live Messenger
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources
"{32DACAC3-6538-405D-915E-8F2D026F199C}" = DJ_AIO_Software_min
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33cc8e60-d6db-45be-9276-b6698187688a}" = F2100
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34A153FE-6926-4C14-B48A-B71E68C672A8}_is1" = MiniTool Partition Wizard Home Edition 7.1
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3705D53F-BB01-4BEE-8585-289E71CAC4B4}" = Компаньон Messenger
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3889988F-762B-4B85-AB17-71C9CC3AE445}" = Messenger Companion
"{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
"{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}" = Windows Live Mesh
"{3A09ED0F-8DDF-47BB-B53D-841AB9D1D3A7}" = Complemento Messenger
"{3B72C1E0-26A1-40F6-8516-D50C651DFB3C}" = Windows Live Essentials
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{3FD1CB9F-807F-451B-926C-9D19C84CFC61}" = Messenger Suradnik
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery
"{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{43D16DA8-BF42-3C62-89D3-3AD47829DC2E}" = Google Talk Plugin
"{443B561F-DE1B-4DEF-ADD9-484B684653C7}" = Windows Live Messenger
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{448163D7-ACA4-4D83-8F57-D7D7AB697E65}_is1" = Cross Racing Championship
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}" = NVIDIA PhysX
"{4736B0ED-F6A1-48EC-A1B7-C053027648F1}" = Galeria fotogràfica del Windows Live
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{48F597DD-D397-4CFA-91A0-4C033A0113BD}" = Windows Live Mail
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A04DB63-8F81-4EF4-9D09-61A2057EF419}" = Windows Live Essentials
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4B744C85-DBB1-4038-B989-4721EB22C582}" = Windows Live Messenger
"{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack
"{4CEEE5D0-F905-4688-B9F9-ECC710507796}" = HTC Driver Installer
"{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack
"{4D7BAC8A-51B8-4243-8567-1415C4272D13}" = Windows Live Writer
"{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{523DF2BB-3A85-4047-9898-29DC8AEB7E69}" = Windows Live UX Platform Language Pack
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{542DA303-FB91-4731-9F37-6E518368D3B9}" = Windows Live Messenger
"{5495E9A4-501A-4D4C-87C9-E80916CA9478}" = Windows Live UX Platform Language Pack
"{56D42B00-572C-4AE9-BCFB-CD45A3B5D0E1}" = Messenger Assistent
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5C2F5C1B-9732-4F81-8FBF-6711627DC508}" = Windows Live Fotogalleri
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{5DA7D148-D2D2-4C67-8444-2F0F9BD88A06}" = Windows Live Writer
"{5DC3BFF3-B84F-4CBE-B2BD-FB52B6C247CA}" = HTC Sync Manager
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{625D45F0-5DCB-48BF-8770-C240A84DAAEB}" = Windows Live Mesh
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}" = Windows Live Writer Resources
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack
"{6A67578E-095B-4661-88F7-0B199CEC3371}" = Windows Live Messenger
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker
"{6D2F0A26-ECEA-49CE-833C-9A6125F3D5E8}" = Doplnok programu Messenger
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DD3B54B-F0D0-4A69-8344-F52033225A02}" = Messenger Companion
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{6E8AFC13-F7B8-41D8-88AB-F1D0CFC56305}" = Windows Live Messenger
"{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}" = Windows Live Movie Maker
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App
"{70CB6C40-8DF1-11E1-BDCF-F04DA23A5C58}" = MSVCRT Redists
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71527C7C-5289-4CB2-88C9-23344C0FF6C1}" = Windows Live Movie Maker
"{71542B43-809A-4A82-ADE0-88245759DC25}" = Messenger Laguna
"{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer
"{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{7327080F-6673-421F-BBD9-B618F357EEB3}" = Windows Live UX Platform Language Pack
"{734104DE-C2BF-412F-BB97-FCCE1EC94229}" = Windows Live Writer Resources
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack
"{76454862-992F-4A12-9D61-76E52A1C6922}" = Windows Live Messenger
"{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live

Re: Preventivne

Napsal: 30 pro 2012 15:05
od kouzelnik3
"{781E0319-15CD-4A4C-A47E-D9FFF697E7A1}" = Messenger Companion
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{78DBE8CE-61F6-4D6C-806C-A0FFF65F5E1D}" = Windows Live Messenger
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}" = Windows Live Photo Common
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7C2A3479-A5A0-412B-B0E6-6D64CBB9B251}" = Windows Live Photo Common
"{7CAC6A44-C3DE-4153-ACA6-7524602C789E}" = Facebook Video Calling 1.2.0.159
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7D926AD2-16D6-42C2-8CA1-AB09E96040BA}" = Windows Live Writer Resources
"{7D99B933-E29C-4599-92F0-DAED2AF041E3}" = Windows Live Essentials
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources
"{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{8142D25E-028A-4563-86ED-5755783C8029}" = Messenger Companion
"{820D0BA3-ACD7-4FB9-A3A7-0ADF0C66A4BE}" = Windows Live Messenger
"{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{847C879C-1467-4924-A491-1302B4C58F70}" = Messenger Companion
"{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials
"{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{861B1145-7762-4794-B40C-3FF0A389DFE6}" = Windows Live Photo Gallery
"{86F444A5-C9B9-41DC-AF28-B5E46F5497C7}" = Windows Live Argazki Galeria
"{885F1BCD-C344-4758-85BD-09640CF449A5}" = Windows Live Photo Gallery
"{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A396897-3AC8-46BD-ABB8-95BE31419FDE}" = TightVNC
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CF5D47D-27B7-49D6-A14F-10550B92749D}" = Windows Live UX Platform Language Pack
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E285C75-9BE2-4349-972B-DECDDF472656}" = Windows Live Writer Resources
"{8FF3891F-01B5-4A71-BFCD-20761890471C}" = Windows Live Messenger
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.PROPLUSR_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AB90513B-B892-41B5-8F8B-1D356A449652}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}_Office14.PROPLUSR_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{924B4D82-1B97-48EB-8F1E-55C4353C22DB}" = Windows Live Mail
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{939C80FA-96C9-44A6-B318-8E7D8BD8481B}" = Messenger Companion
"{93C4B7D5-4E00-491F-BA3E-25B7B63EE7F6}" = Windows Live Mail
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95140000-007A-0401-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0402-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0403-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0404-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0406-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0408-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-040B-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-040D-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-040E-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0414-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0416-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0418-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0419-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-041A-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-041D-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-041E-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-041F-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0424-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-042D-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0816-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007A-0C0A-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95140000-007D-0409-0000-0000000FF1CE}" = Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
"{96403552-88D1-429F-9C92-388B814B885E}" = Messenger Companion
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4CBA78-CFAD-4058-9AB8-532F5DF44682}_is1" = Program 365dní
"{9B2F5A60-B69E-4BD4-A457-1A1009CAC017}" = TV IR
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail
"{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker
"{9E2C5B0E-7A2D-4767-A9B2-77469FB1873A}" = Windows Live Mesh
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0382E3C-7384-429A-9BFA-AF5888E5A193}" = Acer Crystal Eye Webcam
"{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB0B2113-5B96-4B95-8AD1-44613384911F}" = Windows Live Mesh
"{AB5977C5-11AE-4003-BA7D-261C48F2BC35}" = מסייע Messenger
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{AD99B476-6FB7-4985-A3C3-E40595A7E6DE}" = DJ_AIO_Software
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AEDBD563-24BB-4EE3-8366-A654DAC2D988}" = Mirror's Edge™
"{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common
"{B2E90616-C50D-4B89-A40D-92377AC669E5}" = Windows Live Messenger
"{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common
"{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{BAEE89D5-6E87-4F89-9603-A1C100479181}" = Windows Live Messenger
"{BD0C3887-64E6-41D8-9A38-BC6F34369352}" = Windows Live Messenger
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BD8DA595-F501-4ABE-85A0-5C23E82472A0}" = Pomocnik Messenger
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{BFC47A0B-D487-4DF0-889E-D6D392DF31E0}" = Windows Live Messenger
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C1920D73-7374-49d9-8C37-58A6E49078A5}" = F2100_Help
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C6A6036D-FBD0-4324-BEAA-C0845257160C}_is1" = BatteryCare 0.9.12.0
"{C7DAD22D-29D4-438F-B986-03B9ED582EA4}" = Messenger Companion
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C8773FDB-D0DB-BE52-D536-F48F9886B57B}" = Adobe Download Assistant
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C95A5A77-622F-45CA-9540-84468FCB18B1}" = Windows Live Messenger
"{C9E1343D-E21E-4508-A1BE-04A089EC137D}" = Windows Live Messenger
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CBE4F6C3-788E-4CAC-BA25-26FE39A3BC8C}" = Adobe Soundbooth CS5
"{CBFD061C-4B27-4A89-ADD8-210316EEFA11}" = Windows Live Messenger
"{CD442136-9115-4236-9C14-278F6A9DCB3F}" = Windows Live Movie Maker
"{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common
"{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer
"{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF088261-BC81-4FB9-9BA0-7B5B9602D01A}" = Messenger 分享元件
"{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery
"{D042E67C-C16C-4FC3-BBD8-877CFE20B6C4}" = Diver Install 64-bit
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.11 Game
"{D31169F2-CD71-4337-B783-3E53F29F4CAD}" = Windows Live Mail
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D58E381C-DE02-46A9-B9D1-A2CB807D2676}" = Messenger Companion
"{D657CCB5-9F2F-4D3C-B93D-F77EBEF79B66}" = Messenger-kumppani
"{D6CBB3B2-F510-483D-AE0D-1CF3F43CF1EE}" = Windows Live Writer Resources
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{D86B0E2E-DF9A-441C-AF77-8D1A0FF00FA6}" = AIO_Scan
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DA29F644-2420-4448-8128-1331BE588999}" = Windows Live Writer
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker
"{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail
"{DC635845-46D3-404B-BCB1-FC4A91091AFA}" = SmartWebPrinting
"{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}" = Windows Live Writer
"{DDC1E1BD-7615-4186-89E1-F5F43F9B6491}" = Windows Live Movie Maker
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5DD4723-FE0B-436E-A815-DC23CF902A0B}" = Windows Live UX Platform Language Pack
"{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live
"{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack
"{EBE030DD-D404-4D92-85E9-8C3624820808}_is1" = Light Image Resizer 4.0.4.3
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心
"{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F0F5D89A-197C-495B-827E-3E98B811CD2E}" = Windows Live Photo Common
"{F0F9505B-3ACF-4158-9311-D0285136AA00}" = Windows Live Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F14F9EE9-9B68-42B4-90F7-0924F7619281}" = Spremljevalec Messenger
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F35DC85A-E96B-496B-ABE7-F04192824856}" = Windows Live Messenger
"{F3ECEB0A-82A0-4DB9-BB44-393A66BA0871}" = Messenger kísérő
"{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack
"{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources
"{F783464C-C7C6-4E9B-AC40-BC90E5414BAF}" = Windows Live Messenger
"{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos
"{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEA0181F-3758-46DA-B7EC-F3CDFA7E0CE7}" = Помощник на Messenger
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"{FFFA0584-8E3D-4195-8283-CCA3AD73C746}" = Windows Live Messenger
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AnyDVD" = AnyDVD
"Artisteer 3" = Artisteer 3
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.2
"Ashampoo Burning Studio 12_is1" = Ashampoo Burning Studio 12 v.12.0.1
"Audacity_is1" = Audacity 2.0.2
"avast" = avast! Free Antivirus
"CloneCD" = CloneCD
"CloneDVD2" = CloneDVD2
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-11-11
"CrystalDiskInfo_is1" = CrystalDiskInfo 5.0.5
"DAEMON Tools Lite" = DAEMON Tools Lite
"DVBViewer Pro Demo_is1" = DVBViewer Pro DEMO
"DVDFab 8 Qt_is1" = DVDFab 8.1.6.3 (11/02/2012) Qt
"DVDFab 8 Retail Dimitry_is1" = DVDFab 8.0.6.0 (16/12/2010)
"FileHippo.com" = FileHippo.com Update Checker
"FormatFactory" = FormatFactory 3.0.1
"Fraps" = Fraps (remove only)
"Google Chrome" = Google Chrome
"Hamachi" = Hamachi 1.0.2.5
"HyperCam 3" = HyperCam 3
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Identity Card" = Identity Card
"Install Creator" = Install Creator
"InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9B2F5A60-B69E-4BD4-A457-1A1009CAC017}" = TV IR
"InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}" = Acer Crystal Eye Webcam
"InstallShield_{D042E67C-C16C-4FC3-BBD8-877CFE20B6C4}" = Diver Install 64-bit
"LAME_is1" = LAME v3.99.3 (for Windows)
"LManager" = Launch Manager
"Mafia II_is1" = Mafia II DLC Joe's Adventures
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Morgan M-JPEG2000 codec V3" = Morgan M-JPEG2000 codec V3
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"Mozilla Thunderbird 17.0 (x86 cs)" = Mozilla Thunderbird 17.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NirSoft Wireless Network Watcher" = NirSoft Wireless Network Watcher
"O2 Mobilni internet" = O2 Mobilni internet
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"OpenAL" = OpenAL
"OpenSSL Light (32-bit)_is1" = OpenSSL 1.0.1c Light (32-bit)
"ophcrack" = ophcrack 3.4.0
"Picasa 3" = Picasa 3
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"RealPlayer 15.0" = RealPlayer
"Steam App 570" = Dota 2
"TeamViewer 8" = TeamViewer 8
"The KMPlayer" = The KMPlayer (remove only)
"TightVNC" = TightVNC 2.0.4
"TmUnitedForever_is1" = TmUnitedForever Update 2010-03-15
"uTorrent" = µTorrent
"uTorrentControl Toolbar" = uTorrentControl Toolbar
"VLC media player" = VLC media player 2.0.4
"WildTangent acer Master Uninstall" = Acer Games
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"WTA-037a7e35-62b4-4bec-8afb-198f158cb3d0" = Insaniquarium Deluxe
"WTA-0aa200ce-52ae-4c36-9442-cc458c3c2995" = Chuzzle Deluxe
"WTA-16a48e86-8521-4999-af49-9f46ee5c732b" = Crazy Chicken Kart 2
"WTA-39f1d4c5-e4f4-4d8e-9aa1-ad1c76f765eb" = Final Drive: Nitro
"WTA-3d311230-918e-41dc-8a48-c8f52e9705fa" = Virtual Villagers 4 - The Tree of Life
"WTA-3fbb4207-dc80-4f3f-b433-29e6692ac4d9" = Jewel Match 3
"WTA-4aac4c10-32a5-4ad2-b980-dcb83468d91d" = Torchlight
"WTA-63573234-ae4b-4b50-a5ec-f5115886a6ad" = Zuma Deluxe
"WTA-63b8d27a-3f98-4898-92d7-f1528abb0179" = FATE
"WTA-680372ce-4f91-41ac-90ed-0680333ddb3d" = Polar Bowler
"WTA-6d3edcd5-2df7-443c-bb49-f61fece8bda4" = Jewel Quest Solitaire
"WTA-8df348d7-64f5-4cca-91f2-20d1a8bfa501" = Bejeweled 2 Deluxe
"WTA-afb80646-ecac-4e20-ad2a-65c99af7428c" = Agatha Christie - Death on the Nile
"WTA-b71f80a8-3901-4e02-8074-f48bb7d75baf" = Mystery of Mortlake Mansion
"WTA-bb7acd0e-2e4b-47d4-81cc-9831b1c57fa4" = Slingo Deluxe
"WTA-cf6854e1-4576-4371-8825-920ad210eb23" = Wedding Dash
"WTA-e0bcdcb9-a297-4eb5-8000-93e44644851f" = John Deere Drive Green
"WTA-ee662a18-e42d-44b2-936f-b1a024ca54e9" = Penguins!
"WTA-ef2f82cb-7673-410d-970b-6790f1f18ce6" = Plants vs. Zombies - Game of the Year

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"7f4182272b52fd8f" = CZShare Manager
"Dropbox" = Dropbox
"FileZilla Client" = FileZilla Client 3.6.0.2

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 29.12.2012 4:48:21 | Computer Name = kouzelnik | Source = Chrome | ID = 1
Description =

Error - 29.12.2012 5:01:31 | Computer Name = kouzelnik | Source = Chrome | ID = 1
Description =

Error - 29.12.2012 5:05:59 | Computer Name = kouzelnik | Source = Chrome | ID = 1
Description =

Error - 29.12.2012 8:55:18 | Computer Name = kouzelnik | Source = WinMgmt | ID = 10
Description =

Error - 29.12.2012 11:45:35 | Computer Name = kouzelnik | Source = WinMgmt | ID = 10
Description =

Error - 29.12.2012 12:22:11 | Computer Name = kouzelnik | Source = MsiInstaller | ID = 11316
Description =

Error - 29.12.2012 12:35:53 | Computer Name = kouzelnik | Source = WinMgmt | ID = 10
Description =

Error - 30.12.2012 5:53:01 | Computer Name = kouzelnik | Source = WinMgmt | ID = 10
Description =

Error - 30.12.2012 5:59:03 | Computer Name = kouzelnik | Source = Chrome | ID = 1
Description =

Error - 30.12.2012 9:03:50 | Computer Name = kouzelnik | Source = WinMgmt | ID = 10
Description =

[ Media Center Events ]
Error - 25.12.2012 5:17:59 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 10:17:59 - Načtení položky SMTiles-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 26.12.2012 5:02:37 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 10:02:37 - Načtení položky dSM-2.cab se nezdařilo. (Chyba: Stav protokolu
HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 26.12.2012 5:02:44 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 10:02:44 - Načtení položky Logos-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 26.12.2012 5:02:50 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 10:02:50 - Načtení položky SMTiles-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 27.12.2012 8:47:52 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 13:47:52 - Načtení položky dSM-2.cab se nezdařilo. (Chyba: Stav protokolu
HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 27.12.2012 8:47:58 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 13:47:58 - Načtení položky Logos-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 27.12.2012 8:48:05 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 13:48:05 - Načtení položky SMTiles-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 30.12.2012 9:07:41 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 14:07:40 - Načtení položky dSM-2.cab se nezdařilo. (Chyba: Stav protokolu
HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 30.12.2012 9:07:53 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 14:07:48 - Načtení položky Logos-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

Error - 30.12.2012 9:07:59 | Computer Name = kouzelnik | Source = MCUpdate | ID = 0
Description = 14:07:59 - Načtení položky SMTiles-2.cab se nezdařilo. (Chyba: Stav
protokolu HTTP 404: Požadovaná adresa URL na serveru neexistuje. )

[ System Events ]
Error - 29.12.2012 8:58:51 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 29.12.2012 8:58:51 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 29.12.2012 12:34:01 | Computer Name = kouzelnik | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (17:32:36, ?29.?12.?2012) bylo neočekávané.

Error - 29.12.2012 12:33:18 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7043
Description = Služba Windows Update se po přijetí pokynu pro vypnutí neukončila
správně.

Error - 29.12.2012 12:37:12 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 29.12.2012 12:37:12 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 30.12.2012 5:54:18 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 30.12.2012 5:54:18 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 30.12.2012 9:06:46 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 30.12.2012 9:06:46 | Computer Name = kouzelnik | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069


< End of report >

Re: Preventivne

Napsal: 30 pro 2012 23:03
od vyosek
A ma cenu lecit PC, ktere bude za chvili opet stejne zaliskane s prominutim diky blbosti uzivatele a jeho libovani si v crackach\keygenech a podobnych dobrotach :?: Nehlede na autorsky zakon :twisted:

Re: Preventivne

Napsal: 31 pro 2012 10:18
od kouzelnik3
Popravdě ani nevím, proč je v PC ještě mám. Mrzí mě to. :( Když smažu ty cracky/keygeny, bude možné respektive bude ještě někdo tak ochotný a vyčistí PC?

E: Snad jsem to vymazal, co jsem našel, takže pokud to má cenu, z čeho nyní log?

Re: Preventivne

Napsal: 31 pro 2012 18:20
od vyosek
:arrow: Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
  • Provedte aktualizaci
  • Provedte uplny sken - nic nemazte :!:
  • MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Re: Preventivne

Napsal: 31 pro 2012 20:43
od kouzelnik3
Ještě před logem se chci zeptat, zda-li se nebudou nějak krýt avast a MBAM, jestli je možné je použít oba současně.
A děkuju. ;)

E - LOG:

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Verze: v2012.12.31.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Jakub :: KOUZELNIK [administrátor]

31.12.2012 19:11:21
MBAM-log-2012-12-31 (20-39-32).txt

Typ: Kompletní kontrola (C:\|H:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 477928
Uplynulý čas: 1 hodin, 27 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Re: Preventivne

Napsal: 01 led 2013 19:36
od vyosek
:arrow: MBAM pokud bude pouzivan jen jako obcasny jednorazovy skener, tak se nebude tlouci, jelikoz nema rezidentni stit (resp. jeho plna zakoupena verze ano, ale tu nyni nemame)

:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (wsevqc)
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (piybs)
SRV - [2008.07.22 15:01:18 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\ophcrack\pwdump\servpw.exe -- (aipdkj)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {e9df9360-97f8-4690-afe6-996c80790da4} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{23EE25D7-691F-49DC-B52B-A1C2FCF80CE6}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searc}
IE - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}: "URL" = http://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://go.mail.ru/search?fr=fftb&utf8in&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q="
[2012.02.10 15:43:50 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012.12.19 18:14:11 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012.08.08 15:49:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.12.19 18:14:13 | 000,000,000 | ---D | M] (uTorrentControl Community Toolbar) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
[2012.04.15 20:22:33 | 000,000,000 | ---D | M] (fluschipranie) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack
[2012.03.09 19:50:48 | 000,038,601 | ---- | M] () (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\uprotectit@reputation.com.xpi
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2959019409-2027511932-762451989-1001\..\Toolbar\WebBrowser: (no name) - {687578B9-7132-4A7A-80E4-30EE31099E03} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
[2012.03.05 22:55:07 | 000,007,168 | ---- | C] () -- C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[7 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[15 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[9 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]
[2012.02.16 14:39:46 | 000,093,696 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\ezpinst.exe
@Alternate Data Stream - 971 bytes -> C:\ProgramData:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
@Alternate Data Stream - 343 bytes -> C:\ProgramData\Temp:8927A071
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:24051EFF
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:B468194E

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\chromium]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_7B684F571039795D9613652596821858]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pamela.exe]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StudentDOG]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]

:files
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job
C:\Program Files (x86)\ophcrack
C:\Users\Public\Desktop\ophcrack.lnk
c:\ProgramData\Microsoft\Windows\Start Menu\Programs\ophcrack
c:\Users\Jakub\AppData\Local\VirtualStore\Program Files (x86)\ophcrack\.ophcrackrc
c:\Users\Jakub\AppData\Roaming\uTorrent\*crack*.*
c:\Users\Jakub\Desktop\Zálohy instalátorů\*crack*.*

C:\Users\Jakub\AppData\Local\{*}
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Preventivne

Napsal: 01 led 2013 19:50
od kouzelnik3
All processes killed
========== OTL ==========
Service wsevqc stopped successfully!
Service wsevqc deleted successfully!
C:\Program Files (x86)\ophcrack\pwdump\servpw.exe moved successfully.
Service piybs stopped successfully!
Service piybs deleted successfully!
File C:\Program Files (x86)\ophcrack\pwdump\servpw.exe not found.
Service aipdkj stopped successfully!
Service aipdkj deleted successfully!
File C:\Program Files (x86)\ophcrack\pwdump\servpw.exe not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{e9df9360-97f8-4690-afe6-996c80790da4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9df9360-97f8-4690-afe6-996c80790da4}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry key HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Microsoft\Internet Explorer\SearchScopes\{23EE25D7-691F-49DC-B52B-A1C2FCF80CE6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{23EE25D7-691F-49DC-B52B-A1C2FCF80CE6}\ not found.
Registry key HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Microsoft\Internet Explorer\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}\ not found.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://go.mail.ru/search?fr=fftb&utf8in&q=" removed from browser.search.defaulturl
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: true removed from browser.search.useDBForOrder
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.5.3&q=" removed from keyword.URL
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\searchplugin folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\META-INF folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\defaults folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\components folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\searchplugin folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\Plugins folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\META-INF folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\defaults folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\components folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\searchplugin folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\Plugins folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\modules folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\META-INF folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\defaults folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\components folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\chrome folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\{e9df9360-97f8-4690-afe6-996c80790da4} folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-fluschipranie-tests folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-fluschipranie-lib\_locales folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-fluschipranie-lib folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-fluschipranie-data\_locales folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-fluschipranie-data folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\windows folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\utils folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\traits folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\tabs folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\events folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\dom folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib\content folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-lib folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-api-utils-data folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-addon-kit-lib folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources\jid0-dg47y8cbsshh7eddmkeyb6phtn0-at-jetpack-addon-kit-data folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\resources folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack\components folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\jid0-Dg47y8CbssHh7EDdmKEYB6phtn0@jetpack folder moved successfully.
C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\0ysn1qzq.default\extensions\uprotectit@reputation.com.xpi moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2959019409-2027511932-762451989-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{687578B9-7132-4A7A-80E4-30EE31099E03} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687578B9-7132-4A7A-80E4-30EE31099E03}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
File Protocol\Handler\ms-help - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Windows\E4D153288C89484BB9AAF5BE9EA6D01C.TMP\WiseCustomCalla.dll deleted successfully.
C:\Windows\E4D153288C89484BB9AAF5BE9EA6D01C.TMP folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3026.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE436.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP1545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP25DA.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP62A.tmp\System.Windows.Forms.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP62A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP75FA.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7B97.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP84B9.tmp\ehshell.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP84B9.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP982E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP9FAB.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA391.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC957.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPCAAF.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPD74D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\Installer\MSI789.tmp deleted successfully.
C:\Windows\Installer\MSI83B1.tmp deleted successfully.
C:\Windows\Installer\MSI9FB8.tmp deleted successfully.
C:\Windows\Installer\MSIB64A.tmp deleted successfully.
C:\Windows\Installer\MSIC44.tmp deleted successfully.
C:\Windows\Installer\MSIDE81.tmp deleted successfully.
C:\Windows\Installer\MSIE0F7.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVT1B65.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVT21CE.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVT74E0.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVTA9D8.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVTF339.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSG1B43.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSG219D.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSG74DE.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSGA90B.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSGF337.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUB1B64.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUB21BE.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUB74DF.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUBA9D7.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUBF338.tmp deleted successfully.
C:\Windows\Temp\ib102A.tmp deleted successfully.
C:\Windows\Temp\ib1596.tmp deleted successfully.
C:\Windows\Temp\ib253.tmp deleted successfully.
C:\Windows\Temp\ib6FC2.tmp deleted successfully.
C:\Windows\Temp\ib6FC3.tmp deleted successfully.
C:\Windows\Temp\ib6FC4.tmp deleted successfully.
C:\Windows\Temp\ib6FD2.tmp deleted successfully.
C:\Windows\Temp\ib6FD3.tmp deleted successfully.
C:\Windows\Temp\ib6FD4.tmp deleted successfully.
C:\Windows\Temp\ib7023.tmp deleted successfully.
C:\Windows\Temp\ib7032.tmp deleted successfully.
C:\Windows\Temp\ib7052.tmp deleted successfully.
C:\Windows\Temp\ib7062.tmp deleted successfully.
C:\Windows\Temp\ib7186.tmp deleted successfully.
C:\Windows\Temp\ib7197.tmp deleted successfully.
C:\Windows\Temp\ib71A8.tmp deleted successfully.
C:\Windows\Temp\ib71F7.tmp deleted successfully.
C:\Windows\Temp\ib734F.tmp deleted successfully.
C:\Windows\Temp\ib75AB.tmp deleted successfully.
C:\Windows\Temp\ib75BC.tmp deleted successfully.
C:\Windows\Temp\ib75BD.tmp deleted successfully.
C:\Windows\Temp\ib760C.tmp deleted successfully.
C:\Windows\Temp\ib764B.tmp deleted successfully.
C:\Windows\Temp\ib7985.tmp deleted successfully.
C:\Windows\Temp\ib79A5.tmp deleted successfully.
C:\Windows\Temp\ib7A50.tmp deleted successfully.
C:\Windows\Temp\ib7A8F.tmp deleted successfully.
C:\Windows\Temp\ib7FE.tmp deleted successfully.
C:\Windows\Temp\ib873B.tmp deleted successfully.
C:\Windows\Temp\ib87E8.tmp deleted successfully.
C:\Windows\Temp\ib8B8F.tmp deleted successfully.
C:\Windows\Temp\ib8BCE.tmp deleted successfully.
C:\Windows\Temp\ib9233.tmp deleted successfully.
C:\Windows\Temp\ib9263.tmp deleted successfully.
C:\Windows\twain_32\hpqgnds2.tmp deleted successfully.
C:\Users\Jakub\AppData\Roaming\ezpinst.exe moved successfully.
ADS C:\ProgramData:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD deleted successfully.
ADS C:\ProgramData\Temp:8927A071 deleted successfully.
ADS C:\ProgramData\Temp:24051EFF deleted successfully.
ADS C:\ProgramData\Temp:B468194E deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\chromium\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_7B684F571039795D9613652596821858\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pamela.exe\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StudentDOG\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk\ not found.
========== FILES ==========
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001Core.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2959019409-2027511932-762451989-1001UA.job moved successfully.
C:\Program Files (x86)\ophcrack\tables\tables_xp_free_small folder moved successfully.
C:\Program Files (x86)\ophcrack\tables\tables_xp_free_fast folder moved successfully.
C:\Program Files (x86)\ophcrack\tables\tables_vista_free folder moved successfully.
C:\Program Files (x86)\ophcrack\tables folder moved successfully.
C:\Program Files (x86)\ophcrack\pwdump folder moved successfully.
C:\Program Files (x86)\ophcrack folder moved successfully.
File\Folder C:\Users\Public\Desktop\ophcrack.lnk not found.
c:\ProgramData\Microsoft\Windows\Start Menu\Programs\ophcrack folder moved successfully.
c:\Users\Jakub\AppData\Local\VirtualStore\Program Files (x86)\ophcrack\.ophcrackrc moved successfully.
File\Folder c:\Users\Jakub\AppData\Roaming\uTorrent\*crack*.* not found.
File\Folder c:\Users\Jakub\Desktop\Zálohy instalátorů\*crack*.* not found.
C:\Users\Jakub\AppData\Local\{0021CA0B-31FA-488F-8156-269234EC199C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{00DA2022-BC10-4CCA-9F27-B758ABE5BC02} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0113E8AC-8962-4290-8770-12D65443EECC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{02736D04-E80D-46CA-A0A2-F74A74CC4D81} folder moved successfully.
C:\Users\Jakub\AppData\Local\{029EA64D-BFE3-4B17-AEDD-6F21E6AAFF2C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{02DCE039-8C77-46FE-81C8-945F953DD1D5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{038AA3CA-8334-4CB1-9C3A-43CDECF24FCC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{04FAF9F3-D6CD-4EF5-BF84-D5548C4F178D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{071C1A88-289E-4D6E-98CA-28FF3B3E4EE4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{077CDA50-81BB-4664-8C04-CF648CD8B4D2} folder moved successfully.
C:\Users\Jakub\AppData\Local\{08335FE2-BA7A-4151-840F-7DD46B0E85EA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0A73F7A8-43BB-4828-8DDA-8C546F4AB35D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0B1CE2E9-4C0A-4158-9EF9-73FDB64D6C56} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0C6A87D7-3574-401C-BC14-4E87AFA6F5D5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0D2097FE-162D-4B81-8919-A498EC2A444E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0D2CDBAF-25FC-4C8A-A67E-696FDD13B47A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0DC1622C-E74A-4F32-87EE-B8334139507C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0F84D2BE-2BED-4E3E-8BFD-BF9612F2C525} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0FD203D8-4794-47DB-8FFC-05996D9F44DE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{0FF6126A-BF11-4061-A053-5DE2670D13DD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{10771C20-E721-417F-AE10-8452B7590B87} folder moved successfully.
C:\Users\Jakub\AppData\Local\{10C33798-6F67-4F69-B4C1-985F94E85A11} folder moved successfully.
C:\Users\Jakub\AppData\Local\{11395D34-DC8F-412B-BB5E-439D1B5001C6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{119E68CF-24C7-478E-B4E0-8EF0FC51B158} folder moved successfully.
C:\Users\Jakub\AppData\Local\{122B1D13-7C02-4F34-BD70-1EBAD0B810FD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{130282C3-0629-45E1-BD2B-F9D0B6699296} folder moved successfully.
C:\Users\Jakub\AppData\Local\{13499614-2144-48AD-92F4-C0605541C68D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{13E3A6D6-46EA-414E-9256-2BAFD678848E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{160A631A-B902-4812-B9F6-7FB0A7F3D251} folder moved successfully.
C:\Users\Jakub\AppData\Local\{184D533E-79FC-41E3-B955-CE62BA7DFB94} folder moved successfully.
C:\Users\Jakub\AppData\Local\{1976FFFC-EFA5-4392-884D-B6D519DB4B2F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{1BC75F0E-770B-45B6-A3AA-B2CCC0E976EE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{1C91E876-4C17-47A2-9693-5416E355614C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{1F217239-172F-44F3-A355-AEB616CBE0CF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{20188FF4-600A-4E4D-A5FA-3EDAEA9EA4BF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{20862289-E71A-49EB-B3AD-0E058E516704} folder moved successfully.
C:\Users\Jakub\AppData\Local\{20AB6DE8-A705-4163-8FAE-0E832D061E32} folder moved successfully.
C:\Users\Jakub\AppData\Local\{21123633-D91A-4E15-85AC-8A95400630EB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{27E55ED0-B613-43E1-8309-0FACF0606284} folder moved successfully.
C:\Users\Jakub\AppData\Local\{29B3A721-C900-4266-8F29-0BE5859294D3} folder moved successfully.
C:\Users\Jakub\AppData\Local\{29DEC619-5E13-46FA-8D4E-D378CB0B1A99} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2B7A3985-E23A-44C3-9848-F54C945E25E8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2C14DA41-93A9-4D7B-901D-C6C7D6F0F824} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2CBFE913-759D-43C3-B98A-741EB1B4DC65} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2CC220E4-5FFF-4EBC-8341-42B1930FAD0E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2E41A489-313E-44BF-AE61-1C718B6F653B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{2F595AB9-0878-4ECA-A0D7-D78E0C9C867F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{31EDBE72-4DD0-4592-9558-B3C91893317C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{33DBC105-23EF-4478-A433-5AF01F8D5AEA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3414A30F-260E-4EF0-8695-39006DF1813E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3531EBEB-F081-4D39-B688-E598ADA93B1E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{35BFE3CF-C327-43C8-B21A-6B79ED17A878} folder moved successfully.
C:\Users\Jakub\AppData\Local\{36C359B3-9D7C-4C1F-83BD-216C2C4CFE1B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{36F3EA29-F8B8-4065-9E09-3F973816CB83} folder moved successfully.
C:\Users\Jakub\AppData\Local\{370DAACC-76C2-434A-9767-254FFECD222B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{374F07EC-9E8B-4C6A-BE7C-B5224B84DCC4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{37B24204-7A6E-4441-A65B-C2D14E7EA644} folder moved successfully.
C:\Users\Jakub\AppData\Local\{37ECFF81-817A-4259-9957-45ACAACF4554} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3806145B-522C-4162-8DC5-D63345168378} folder moved successfully.
C:\Users\Jakub\AppData\Local\{38357F4E-90A8-4AEA-AD97-9CBB7099558F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3A5C7362-84F0-476C-884C-B19697AAC208} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3AA183C5-7E17-4D94-827C-815D0A45C39B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3B9BEE7E-3280-499E-A0A0-D7725E4ADDF6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3BCC10E1-E29C-412B-B744-35C3C85DD900} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3CE16A56-A326-4608-A79F-B2D02A350E44} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3F001E35-9491-4357-A01D-D1D998E7B85C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{3FD43F59-0506-42FC-9EAC-21DCAD924298} folder moved successfully.
C:\Users\Jakub\AppData\Local\{40D5F4B4-9344-44F2-AE79-87232F251F74} folder moved successfully.
C:\Users\Jakub\AppData\Local\{41202C0E-A610-47D7-9090-BF54E962D008} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4128F8A6-FA39-405F-8682-080DE57FD5E8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{41671783-E38D-4970-A9CF-F77A4CDED72D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{44527594-8D6F-43EA-97C9-BE477965CA53} folder moved successfully.
C:\Users\Jakub\AppData\Local\{452E4EBC-53E9-47DE-B074-FB9A9D9AD95B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{45F89D9C-7C39-42BE-8452-6D5DB053EB0C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{47F84D53-0FB6-4474-A167-928F8D7809F8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4A01C7BB-6436-43E5-B2EA-E225754267FA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4A61BF33-5885-44EB-9E62-CA3098CD81B9} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4A86F9E5-7758-46FE-A152-76A59048FD07} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4AE8AA71-E396-474C-94BA-A0CEF41A7299} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4B3ECF06-C181-45B1-8E36-755DA066A8FE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4BCF8D0D-F6E8-4664-9FB4-0B5397883A38} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4BDE6F16-2CFF-429A-AD25-6C7C9418B673} folder moved successfully.
C:\Users\Jakub\AppData\Local\{4FD7FDB0-435A-4130-9254-ED6ED02AD2F5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{503B9B25-5565-4D91-9323-238C62440FC3} folder moved successfully.
C:\Users\Jakub\AppData\Local\{50C8F0A8-DCB1-44FD-B94F-27B1AF1C016E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{50DA2EB8-5B4F-404F-A354-329A994C3A9F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5132D8A0-C26C-4595-922E-8D5260BC2CCE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{52AEC42B-A947-4F1D-9D19-C084185DC6D4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{532C440C-1843-4669-A73A-6E3E4157DFF2} folder moved successfully.
C:\Users\Jakub\AppData\Local\{533CAF73-9C9E-45DB-86D1-7CC159271044} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5495718B-BF57-46FE-A906-22B7721C813B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5496430E-3DF6-4394-8761-225329A6301A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{553DFEC6-013D-47B0-B53E-50BD93DA3451} folder moved successfully.
C:\Users\Jakub\AppData\Local\{556153A6-A65A-4546-9E11-7257ACFFBEF7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5846862A-4FFE-4883-9477-9C99A445E3A8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{58EF91C4-BF6D-4372-AFBA-0A448E1817F0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5A7DE15D-E9F0-4C60-9B8A-7F13748AD5FB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5CB3D9A9-57BA-46AD-8648-A7BA7D81DAFD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5DA7FA34-CC79-475B-AB00-D2DA781F295C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5E1EFEFA-0442-4317-A6B0-A8B082C113DC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5E418CD0-0796-4DE6-A2DD-7B2D421A8BAC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{5FA41C38-9C6C-4F41-9D91-6380AB6387CB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{60F2DEF4-FD40-4003-9A77-A40D2D56A4B8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{615914AF-0E54-431E-A1F0-AF55EBF32696} folder moved successfully.
C:\Users\Jakub\AppData\Local\{61744876-47D2-46F7-98BD-C34C2BEBDE07} folder moved successfully.
C:\Users\Jakub\AppData\Local\{61AE34ED-32E0-4437-B1DA-153A15407942} folder moved successfully.
C:\Users\Jakub\AppData\Local\{61E0B4C7-E67C-4156-89C4-682991D1829F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{62DE83C6-DA51-47A2-9E45-3D22FA8298C8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6482A274-7B67-41E8-A365-432E9FC584CA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{66B6C09C-86D1-4831-A626-013F759EBE91} folder moved successfully.
C:\Users\Jakub\AppData\Local\{66DD5D18-C0E8-4DCA-808B-A5FD497FD002} folder moved successfully.
C:\Users\Jakub\AppData\Local\{67412A12-CF57-4CD4-BE60-9031B32BF5B0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{67D579B9-C3EA-4F9A-AE67-A5EDD6A5D628} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6A2F378E-729F-4C4D-88F5-93B6653568B2} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6B35F9C5-9757-4A4E-BE43-31B4216E5F5A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6CBC08F6-858E-43D0-B95A-198450268FC5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6E85D72A-E8D4-4413-94B1-17C8093F2CE7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{6EA67BFC-5B97-4349-AF40-BED32111CFAF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{716B7AA3-9761-4170-A6C1-9181586B5358} folder moved successfully.
C:\Users\Jakub\AppData\Local\{721343E6-A66C-4730-B84B-06D3C8202BBB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{727518F3-5190-47D2-A541-E1541D9B40D4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7284BB98-B2BB-40B1-A448-A6910C408BF0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{72C2A80E-A9B6-4DB4-9E32-59E3ECF31373} folder moved successfully.
C:\Users\Jakub\AppData\Local\{74C4EFF2-0948-4BB0-8B2C-8D4EEB8B9990} folder moved successfully.
C:\Users\Jakub\AppData\Local\{74D60A74-D623-4F5A-8521-E192F1A7AD81} folder moved successfully.
C:\Users\Jakub\AppData\Local\{75777CD7-70AF-4F52-9EF7-A01DCC3F5E64} folder moved successfully.
C:\Users\Jakub\AppData\Local\{76AEDAF0-EA70-4A14-B002-B9F264A2FBEA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{76D23D0E-5E45-4256-9D19-C2FD8D9E2BAB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{77439160-36BF-4549-8785-D8FCE93D46D8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{77B30104-FD85-4DB5-8E02-AD03052455B3} folder moved successfully.
C:\Users\Jakub\AppData\Local\{78FBDF81-68F1-4E5B-A36B-DAED225D328D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{79067494-D4DC-4BA0-B86E-270582BA275F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7B797910-B41E-46AC-AAB5-119B9E7908B0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7B8D9EEB-383B-4F3E-B502-D8D62507F2D5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7BE0E636-235D-461F-BE58-CAC0F9CA29C0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7C885E7F-174D-43FA-B142-AA295D30A7AF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7D2C56F3-BFE3-4FD0-A583-A979047142D5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7D81CC2D-59BC-4C0C-9C2D-C82B6158EB6E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7E62C919-CAC9-433D-BA89-CD1F54C7BD71} folder moved successfully.
C:\Users\Jakub\AppData\Local\{7E869508-06FC-46A1-96A9-CC9CD88E7542} folder moved successfully.
C:\Users\Jakub\AppData\Local\{8145356A-EA54-4A68-B0CE-6C2E89C2B677} folder moved successfully.
C:\Users\Jakub\AppData\Local\{82ADA027-EC0A-4B9F-A7ED-0845D4C66ABB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{82BB008F-FEEC-4CF5-AEEF-C073E4278C30} folder moved successfully.
C:\Users\Jakub\AppData\Local\{83AD6793-6FE2-45C8-B5BF-573EB3D9DBA6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{847EA376-D5A7-4220-8CE5-378D44616358} folder moved successfully.
C:\Users\Jakub\AppData\Local\{848A0BB5-D154-47B2-B526-58B5C6F5F79C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{851960C6-EF8F-407B-8FDE-1782BE5E1223} folder moved successfully.
C:\Users\Jakub\AppData\Local\{85B45BA0-75FB-41F3-B006-1C32822F8D47} folder moved successfully.
C:\Users\Jakub\AppData\Local\{86B8519B-641C-4306-A14A-66504B4EE701} folder moved successfully.
C:\Users\Jakub\AppData\Local\{86D54D8E-4E50-482C-8C00-A4A8608F6A41} folder moved successfully.
C:\Users\Jakub\AppData\Local\{86E22DE7-F838-449D-83F0-17A9562693F8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{86EC65B9-9F1A-47A9-8E5F-02138A9C38F6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{87647E8C-B624-4B0A-AF79-1B1F62B6FB4C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{87C41646-98E9-4610-B772-0468B2B9CB4D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{87F04F06-EA92-4926-A27E-1855B32FFACC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{88A79267-96CA-49C1-B8F6-DA97071780E7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{88B746F8-F6CB-4C59-AEB6-E992A29ADA25} folder moved successfully.
C:\Users\Jakub\AppData\Local\{88FC8D00-E5EA-4FC7-90FF-67859E86DBFE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{88FD567C-08C4-41A9-ACA7-B8C2849FC8FD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{899151E1-CF47-45DA-89D9-693C4CF2AB9D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{899E9C45-44AD-4404-A270-F0661F374F58} folder moved successfully.
C:\Users\Jakub\AppData\Local\{89A75F58-DEAA-4EC6-80AA-D89A09057B1A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{8D49EAFA-7844-4A90-AE92-30EEB75D726D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{8DFCCF35-CDB2-4ACB-BF79-4C3A897E39DE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{8F3E1BBC-3850-44DC-9250-7FD8830E90C6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{91E7003C-D0DD-4463-AC32-97D0EC7F8C79} folder moved successfully.
C:\Users\Jakub\AppData\Local\{951BD57D-5093-4A96-B3A1-1E61806AB683} folder moved successfully.
C:\Users\Jakub\AppData\Local\{96E5B4B7-B68A-43DD-8E81-A8ED4CFD5E5F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{97A7C419-57A2-495A-8362-767BE044EEEA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{98BB1AEF-4B57-4C13-A1E2-475852666ABE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{99D86873-081B-48C6-93F1-879CB7EE4FC1} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9A0D6F68-A734-4F89-BAD2-F760E7C6F780} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9A216D55-E0E2-481D-B776-0D1E28874ABD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9BF6ADEE-4904-4763-B42C-D200E24E9D94} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9C2FE160-4970-461D-B9B2-DC75F6AD58EB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9C6C53A9-5502-499D-B978-371DB391249C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9DF4E0CB-9E0E-4F37-935F-23D9F0118BD7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9F38BB37-A185-497E-9473-923FC8EE5DAA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{9FB97A8C-9DB0-45F6-B64C-8B1A4727EAAB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A0392212-4111-4A39-82E2-EDBDE445D4EC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A078B9BE-478F-4A4A-8100-71D16E032E5C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A08E8C60-F098-4FCC-BB63-525975CF6C67} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A12236F0-FBB3-450D-9494-D25122E1EB07} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A1CCA58D-77B8-4765-B15F-910AB19CEDB0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A29A1C36-7BF1-490C-82F3-71497F15E19F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A3CF4473-4434-4DCB-89CB-A9311B41C04F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A404B18C-9E96-4C95-B49E-23C69E1277EF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A43A86E1-775A-4179-A782-42CDCA7810A8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A50DE28D-5247-4FBC-8B81-63471DD7750F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A53B86A0-A68A-4591-B74C-55907C9C7911} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A57A7E31-EE7B-436E-BA46-A0016529C8DC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A61E0DCA-D73F-496F-B7F1-4A488DF4F369} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A77CC9A6-0B7F-4203-ACEA-EEF4981DDC86} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A8DBD057-E192-45E0-92AF-12BC66FC44ED} folder moved successfully.
C:\Users\Jakub\AppData\Local\{A958101A-82E4-466A-88C3-7FB48C595706} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AB729E34-1C05-4FAC-BA80-4630CE978614} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AC8358A7-F3E6-4D1D-B0F0-6F5466A57FD8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AD781305-B217-4018-A88A-51F62A2C67AB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AE50AFE4-821A-4484-9786-5F6ABF9D837D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AE59AC8A-5E1A-480D-8416-92B66167EB95} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AF2DB00A-4ADA-4D85-8CA7-E2B00CB75256} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AF82918C-8040-4EAB-AE34-B4CC98E44D34} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AF8DECEE-7609-43EC-9917-742592E22E03} folder moved successfully.
C:\Users\Jakub\AppData\Local\{AFB4E01B-6426-4A3A-A572-575C09A6ED1C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B0163776-8B26-4EB9-ACE4-8806A3557B48} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B102F85B-2961-429B-B3AD-A34A70978268} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B211DDEB-68D2-4AF5-B4D1-D8BFA586B8F3} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B48E7495-3566-4339-A59C-852BB23128E1} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B6DE9B04-9A20-4DAD-A7F7-50FA14FC65C7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B7197A30-AAC6-4B73-B90D-EE35AA1D2D41} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B76A6EDA-4613-40BC-9C64-32F752758ADF} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B784A4AE-A414-4F11-B538-2F096034FC1C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B80C1BB6-1420-4E45-AF99-62C9867311DA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B868A63E-79D4-4ABF-85EF-8D1B81D65613} folder moved successfully.
C:\Users\Jakub\AppData\Local\{B9184BF0-C343-444C-B0B4-8457723799D8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{BD2B992C-099E-4ABF-8B62-37FD73DEF877} folder moved successfully.
C:\Users\Jakub\AppData\Local\{BD57F0D7-269E-48A9-B387-829890FE95F3} folder moved successfully.
C:\Users\Jakub\AppData\Local\{BF39DCEC-136F-4B2E-B007-2293A2CFEED4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C136D0C9-4663-40BC-8505-0FEBD5A80446} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C204C5EB-4C1C-4A43-8706-651EDD166577} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C27D928C-5E26-47A9-B7D1-E39B99DE5E0C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C6F805CA-19E6-4F79-A385-164F1A3E7F92} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C7CAFB60-53F9-4F0F-86BE-9A9BF6007E57} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C87832E1-6965-4506-B9DA-694DDAE29C3A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C8935B07-4D98-4477-B242-E8511EDF091E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{C8DA513C-9180-4FCF-9F36-82D41E30F598} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CB3621D4-C55C-40D1-95F1-482F0B00CB88} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CC0BE234-952A-4BFD-99AA-2B600A532180} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CDAC7A7C-CF62-4221-A639-3C609236C7B4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CE92B2AB-09BF-4B2C-828C-A9A78D793E20} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CE9403D8-F797-4C5E-BF1B-BD3BE172148E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{CFB78AE9-E74D-4A00-BBB3-1038FE219EFB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D082746D-B415-429A-9BE5-73CEDFD9B57A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D16EBF7A-EDDF-4F4A-BFD2-6E7C210D87F4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D190C02B-885F-4AA4-A710-84F3467EC1E5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D1E91E16-1716-4293-94FE-3E0D3B9F9376} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D1EF18C3-945E-4923-95F4-63BE2526182F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D22FCB1E-E005-4311-824A-384D9DA552EA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D25D2243-A3C2-48B6-BEBB-AD4E2A90E13E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D2CA663F-2F07-4888-A325-361E7C6451A0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D3869BF6-8EB9-48B4-B22E-2545E2621F36} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D44DD167-7601-499B-837F-5A64CD0C4599} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D4799CC0-C64F-44A5-A610-116A1D06EAFB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D5044FA9-E432-437F-9CAF-14C377C8DF04} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D5C14E1E-2E8C-495E-8631-53BE84A84217} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D5ED0973-638F-43A8-B176-EFB0741B87EA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D709830E-BC86-4CF8-8AEB-20CC514A360C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D71A49B3-A52A-44CD-88DA-C4AF5E0D7A46} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D7337B77-36DF-4460-9332-7F6825004611} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D74ED9AD-740C-427E-8B65-43EBBB0EC945} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D7F963CF-6BEE-4B1F-A359-0A59EAA020D9} folder moved successfully.
C:\Users\Jakub\AppData\Local\{D973DDA8-EE68-47F3-9E31-6A605D3AF5C7} folder moved successfully.
C:\Users\Jakub\AppData\Local\{DAD116AC-0F09-4738-8BB5-AB33680198FA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{DAD302E7-8DE0-4336-8B6D-BEC4C518487F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E0592A45-DAEB-45B8-91DF-578A6B5F589C} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E184B461-4D6D-4570-9E8A-1D7574CE7FFE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E1D75EB4-9D9D-496A-A053-D959687FB976} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E2E39772-2ACA-44FA-89E0-B1344D8B3113} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E33B9D4D-41CB-493A-8953-7DBC2D0786F5} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E39847F9-46E0-42E0-989A-7C8968497CB6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E3BBDB4C-5996-42C3-91E3-8E2E15F5CA7E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E4AAFE34-9BFB-495C-8D35-EB0405621A7B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E5163F79-0E72-4CC3-95B0-A11F1E3B8CB8} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E7600961-F5A6-488D-AE5A-D10F1BDC6264} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E774F18E-9FBD-4380-A8BF-DC74A09E3520} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E7DD5D65-0647-429B-B8EA-C145813F6247} folder moved successfully.
C:\Users\Jakub\AppData\Local\{E82CA49E-86F6-412E-8CF1-1AC00EDC4C71} folder moved successfully.
C:\Users\Jakub\AppData\Local\{EA7DCE07-0F6F-416B-9587-0E9A81FE2F79} folder moved successfully.
C:\Users\Jakub\AppData\Local\{ECA5108F-ED20-4A9F-B765-BAA629855D17} folder moved successfully.
C:\Users\Jakub\AppData\Local\{ECCC7EEF-DDA8-4EAF-90F8-587BED0A1722} folder moved successfully.
C:\Users\Jakub\AppData\Local\{ECE78662-2686-4362-844C-3E3060681CBC} folder moved successfully.
C:\Users\Jakub\AppData\Local\{ED6FB2ED-7564-485C-A7E6-AF9296A0096E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{EE712425-0C67-4320-8405-4F83AAF5D3A6} folder moved successfully.
C:\Users\Jakub\AppData\Local\{EE90EE7D-DE2C-442C-ABD0-BFB99DCB75BB} folder moved successfully.
C:\Users\Jakub\AppData\Local\{EF10925C-28EC-4997-A9D3-78351D6BD668} folder moved successfully.
C:\Users\Jakub\AppData\Local\{EF6C58A6-8C79-43DA-A13E-572F1C4AB38A} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F0086381-CC2B-4FD6-B15C-08F01CC11AF0} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F0ED8163-E0D4-4261-AD40-F1532EA353D2} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F115E458-6110-41BA-BFF6-FECECA332865} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F18F391D-B2FC-4BC6-8582-7C5616C9F59D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F300D0FC-9B48-475E-B8AF-4415858680C9} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F377E8E2-0CCE-4BE9-A72E-668D3DFE405B} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F439DC73-DDE6-4211-8F8E-A826BA5B4E50} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F4D6922E-4CCD-4EAA-BDA5-7A05126A88FD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F50F7AEA-C941-49C9-9AF1-53CDCFF12413} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F550F1EA-868C-42C4-B1CC-684B4DC9BAE1} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F56E4D46-958A-412E-B3AF-513F17DCB6DE} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F687791C-1DEE-4DD7-B4EA-5E4B57C36A3F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{F8CF650A-4E18-4180-91A0-AC6D3729A60F} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FA02D691-101E-4A63-9A29-2431141F873E} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FA369E82-7756-4A08-88AC-7E576422E576} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FA3BDFEB-7DC3-4380-A38E-6C7EE662D220} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FB35448B-D51F-4A42-8BA0-7FBB181E0E0D} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FC297A44-BEB1-44D7-A0A9-FC6A0B246F55} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FCFAF4E6-9A74-4E4C-800E-ACEB075738FA} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FDCB3648-582F-4BF4-97C3-D1CF8B8C82AD} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FDEEC134-579B-44B2-9CF5-C4654A778FA2} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FE58D5A7-6999-4981-BCE6-819F840AFC94} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FF7797DA-5E33-4C08-919E-0ED7410CBFE4} folder moved successfully.
C:\Users\Jakub\AppData\Local\{FFF69DB0-6A28-4D8F-A1B7-283EC273888C} folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Jakub
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 3382305 bytes
->Java cache emptied: 231586 bytes
->FireFox cache emptied: 17410950 bytes
->Google Chrome cache emptied: 418325360 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 57363 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 623780 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50641 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 420,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Jakub
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Jakub
->Java cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01012013_194211

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: Preventivne

Napsal: 01 led 2013 19:54
od vyosek
Fajn, jak se chova PC :???:

Re: Preventivne

Napsal: 01 led 2013 20:55
od kouzelnik3
Rychlejší minimálně. ;) Inu - jako když je vyčištěné od někoho tu z fóra, nyní od Vás. ;) Děkuji. ;)
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz