Kompletní problém s NTB

[PrumyslovakCV]

Dobrý den, poslední dobou se mi počítač zasekává, šlape strašně pomalu... Hry, které mi mají jít nejdou a když tak se sekají, internet se neustále seká... Prosím o radu

Logfile of random's system information tool 1.09 (written by random/random)
Run by TescoTaska at 2013-01-15 22:11:19
Microsoft Windows 7 Ultimate
System drive C: has 9 GB (12%) free of 76 GB
Total RAM: 2039 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:11:43, on 15.1.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\WebcamMax\wcmmon.exe
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\taskmgr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\TescoTaska\Desktop\RSIT.exe
C:\Program Files\trend micro\TescoTaska.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O2 - BHO: uTorrentControl_v2 - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\TescoTaska\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "C:\Program Files\WebcamMax\wcmmon.exe" -a
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: hamachi.lnk = C:\Program Files\Hamachik\hamachi.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: STI Simulator - Unknown owner - C:\Windows\System32\PAStiSvc.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5050 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473b6bd-4691-4744-a82b-7854eb3d70b6}]
uTorrentControl_v2 Toolbar - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-12-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-12-25 170416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7473b6bd-4691-4744-a82b-7854eb3d70b6} - uTorrentControl_v2 Toolbar - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-12-14 2255360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-11-09 17877168]
"Facebook Update"=C:\Users\TescoTaska\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-12-28 138096]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-12-29 735608]
"WebcamMaxAutoRun"=C:\Program Files\WebcamMax\wcmmon.exe [2011-07-17 1038848]

C:\Users\TescoTaska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
hamachi.lnk - C:\Program Files\Hamachik\hamachi.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.tscc"=C:\Windows\system32\tsccvid.dll
"vidc.tsc2"=C:\Windows\system32\tsc2_codec32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-01-15 22:11:21 ----D---- C:\Program Files\trend micro
2013-01-15 22:11:19 ----D---- C:\rsit
2013-01-15 18:31:32 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-01-15 18:31:32 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-01-15 18:31:32 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-01-15 18:31:31 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-01-15 18:31:31 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-01-15 18:31:31 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-01-15 18:31:31 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-01-15 18:31:30 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-01-15 18:31:30 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-01-15 18:31:30 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-01-15 18:31:29 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-01-15 18:31:29 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-01-15 18:31:26 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-01-15 18:31:24 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-01-15 18:31:24 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-01-15 18:31:24 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-01-15 18:31:24 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-01-15 18:31:23 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-01-15 18:31:22 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-01-15 18:31:22 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-01-15 18:31:22 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-01-15 18:31:22 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-01-15 18:31:21 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-01-15 18:31:21 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-01-15 18:31:20 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-01-15 18:31:20 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-01-15 18:31:20 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-01-15 18:31:20 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-01-15 18:31:19 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-01-15 18:31:18 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-01-15 18:31:18 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-01-15 18:31:18 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-01-15 18:31:18 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-01-15 18:31:17 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-01-15 18:31:17 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-01-15 18:31:16 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-01-15 18:31:16 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-01-15 18:31:16 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-01-15 18:31:16 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-01-15 18:31:15 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-01-15 18:31:15 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-01-15 18:31:14 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-01-15 18:31:14 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-01-15 18:31:14 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-01-15 18:31:14 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-01-15 18:31:14 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-01-15 18:31:12 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-01-15 18:31:11 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-01-15 18:31:11 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-01-15 18:31:11 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-01-15 18:31:11 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-01-15 18:31:11 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-01-15 18:31:10 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-01-15 18:31:08 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-01-15 18:31:08 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-01-15 18:31:08 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-01-15 18:31:07 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-01-15 18:31:07 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-01-15 18:31:07 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-01-15 18:31:06 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\xinput1_3.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-01-15 18:31:05 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-01-15 18:31:04 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-01-15 18:31:04 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-01-15 18:31:04 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-01-15 18:31:04 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-01-15 18:31:04 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-01-15 18:31:03 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-01-15 18:31:03 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-01-15 18:31:03 ----A---- C:\Windows\system32\d3dx10.dll
2013-01-15 18:31:02 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-01-15 18:31:02 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-01-15 18:31:01 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-01-15 18:31:00 ----A---- C:\Windows\system32\xinput1_2.dll
2013-01-15 18:31:00 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-01-15 18:30:59 ----A---- C:\Windows\system32\xinput1_1.dll
2013-01-15 18:30:59 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-01-15 18:30:58 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-01-15 18:30:52 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-01-15 18:30:51 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-01-15 18:30:50 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-01-15 18:25:19 ----HD---- C:\Windows\msdownld.tmp
2013-01-15 18:25:19 ----D---- C:\Windows\system32\directx
2013-01-15 18:25:15 ----D---- C:\Games
2013-01-13 21:41:34 ----D---- C:\Users\TescoTaska\AppData\Roaming\TechSmith
2013-01-13 21:39:52 ----D---- C:\Program Files\QuickTime
2013-01-13 21:39:39 ----D---- C:\Program Files\Common Files\TechSmith Shared
2013-01-13 21:39:22 ----D---- C:\ProgramData\TechSmith
2013-01-13 21:39:22 ----D---- C:\Program Files\TechSmith
2013-01-13 20:09:26 ----D---- C:\SFFuutonMT2
2013-01-12 20:24:44 ----D---- C:\Users\TescoTaska\AppData\Roaming\TS3Client
2013-01-12 20:22:01 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-01-11 19:28:39 ----A---- C:\Windows\system32\usp10.dll
2013-01-11 19:28:37 ----A---- C:\Windows\system32\win32k.sys
2013-01-11 19:28:33 ----A---- C:\Windows\system32\win32spl.dll
2013-01-11 19:27:52 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-11 19:27:52 ----A---- C:\Windows\system32\winsrv.dll
2013-01-11 19:27:52 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-11 19:27:52 ----A---- C:\Windows\system32\kernel32.dll
2013-01-11 19:27:52 ----A---- C:\Windows\system32\conhost.exe
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-11 19:27:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-11 19:27:37 ----A---- C:\Windows\system32\msxml6.dll
2013-01-11 19:26:56 ----A---- C:\Windows\system32\Wpc.dll
2013-01-11 19:26:56 ----A---- C:\Windows\system32\gameux.dll
2013-01-11 19:26:43 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-09 13:45:15 ----A---- C:\Windows\system32\FntCache.dll
2013-01-08 22:28:19 ----D---- C:\Program Files\Hamachik
2013-01-08 22:28:19 ----A---- C:\Windows\system32\drivers\hamachi.sys
2013-01-08 21:56:00 ----D---- C:\ProgramData\WebcamMax
2013-01-08 21:55:59 ----D---- C:\Users\TescoTaska\AppData\Roaming\WebcamMax
2013-01-08 21:53:06 ----D---- C:\Program Files\WebcamMax
2013-01-07 18:24:59 ----D---- C:\water-packer
2013-01-07 18:19:18 ----D---- C:\Users\TescoTaska\AppData\Roaming\Hamachi
2013-01-07 18:18:56 ----D---- C:\Program Files\Hamachi
2013-01-06 18:28:37 ----D---- C:\FR
2013-01-06 16:49:34 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2013-01-06 16:49:21 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2013-01-06 16:49:19 ----DC---- C:\Windows\system32\DRVSTORE
2013-01-06 16:49:13 ----D---- C:\Program Files\Oracle
2013-01-06 16:44:47 ----A---- C:\Windows\system32\libmysql_d.dll
2013-01-06 16:44:45 ----D---- C:\Program Files\PremiumSoft
2013-01-06 16:43:13 ----D---- C:\Program Files\LogMeIn Hamachi
2012-12-31 21:53:19 ----A---- C:\Users\TescoTaska\AppData\Roaming\Sdat.exe
2012-12-29 18:47:22 ----D---- C:\Program Files\Counter-Strike Xtreme V6
2012-12-29 17:08:01 ----D---- C:\Users\TescoTaska\AppData\Roaming\Mozilla
2012-12-29 17:07:59 ----D---- C:\Program Files\Conduit
2012-12-29 17:07:55 ----D---- C:\Program Files\uTorrentControl_v2
2012-12-29 17:07:25 ----D---- C:\Program Files\uTorrent
2012-12-29 17:06:57 ----D---- C:\Users\TescoTaska\AppData\Roaming\uTorrent
2012-12-29 17:06:35 ----D---- C:\Program Files\WinSCP
2012-12-28 22:13:05 ----A---- C:\Windows\system32\vbscript.dll
2012-12-28 22:13:05 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-28 22:13:04 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-28 22:13:04 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-28 22:13:04 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-28 22:13:04 ----A---- C:\Windows\system32\ieui.dll
2012-12-28 22:13:03 ----A---- C:\Windows\system32\wininet.dll
2012-12-28 22:13:03 ----A---- C:\Windows\system32\url.dll
2012-12-28 22:13:03 ----A---- C:\Windows\system32\jscript9.dll
2012-12-28 22:13:03 ----A---- C:\Windows\system32\jscript.dll
2012-12-28 22:13:02 ----A---- C:\Windows\system32\urlmon.dll
2012-12-28 22:13:02 ----A---- C:\Windows\system32\iertutil.dll
2012-12-28 22:13:01 ----A---- C:\Windows\system32\ieframe.dll
2012-12-28 22:12:59 ----A---- C:\Windows\system32\mshtml.dll
2012-12-28 21:00:40 ----D---- C:\Windows\Minidump
2012-12-28 14:47:41 ----D---- C:\990cd9ea8a4a51908c11
2012-12-28 13:10:50 ----SHD---- C:\Windows\system32\28463
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-12-28 12:56:25 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-12-28 12:56:23 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-12-28 12:56:23 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-12-28 12:56:22 ----A---- C:\Windows\system32\fsutil.exe
2012-12-28 12:56:22 ----A---- C:\Windows\system32\esent.dll
2012-12-28 12:56:22 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-12-28 12:56:22 ----A---- C:\Windows\system32\drivers\storport.sys
2012-12-28 12:56:22 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-12-28 12:56:22 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-12-28 12:56:22 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-12-28 12:56:12 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2012-12-28 12:56:12 ----A---- C:\Windows\system32\drivers\bthport.sys
2012-12-28 09:27:46 ----D---- C:\Users\TescoTaska\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-12-28 08:07:54 ----D---- C:\Program Files\Microsoft.NET
2012-12-27 17:40:39 ----A---- C:\Windows\system32\wextract.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\webcheck.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\pngfilt.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\occache.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\msrating.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\msls31.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\mshtmler.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\mshta.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\msfeedssync.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\licmgr10.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\inseng.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\imgutil.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iexpress.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iesysprep.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iesetup.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iernonce.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iepeers.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\iedkcs32.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ieapfltr.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ieapfltr.dat
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ieakui.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ieaksie.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ieakeng.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\ie4uinit.exe
2012-12-27 17:40:39 ----A---- C:\Windows\system32\icardie.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\dxtrans.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\dxtmsft.dll
2012-12-27 17:40:39 ----A---- C:\Windows\system32\admparse.dll
2012-12-27 16:50:14 ----D---- C:\Windows\system32\Wat
2012-12-27 16:45:29 ----A---- C:\Windows\system32\atmlib.dll
2012-12-27 16:45:29 ----A---- C:\Windows\system32\atmfd.dll
2012-12-27 16:43:30 ----A---- C:\Windows\system32\msv1_0.dll
2012-12-27 16:37:34 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2012-12-27 16:37:34 ----A---- C:\Windows\system32\PresentationHost.exe
2012-12-27 16:37:34 ----A---- C:\Windows\system32\netfxperf.dll
2012-12-27 16:37:34 ----A---- C:\Windows\system32\mscoree.dll
2012-12-27 16:37:34 ----A---- C:\Windows\system32\dfshim.dll
2012-12-27 16:17:13 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-27 16:17:13 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-27 16:17:13 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-27 16:15:52 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-27 16:15:52 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-27 16:15:51 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-27 16:15:51 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-27 16:15:50 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-27 16:15:50 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-27 16:15:50 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-27 16:14:41 ----A---- C:\Windows\system32\wmi.dll
2012-12-27 16:14:41 ----A---- C:\Windows\system32\imagehlp.dll
2012-12-27 16:14:41 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-12-27 16:13:36 ----A---- C:\Windows\system32\browserchoice.exe
2012-12-27 16:07:04 ----A---- C:\Windows\system32\drivers\ks.sys
2012-12-27 16:05:46 ----A---- C:\Windows\system32\wcncsvc.dll
2012-12-27 12:32:06 ----A---- C:\Windows\system32\spoolsv.exe
2012-12-27 12:32:04 ----A---- C:\Windows\system32\wintrust.dll
2012-12-27 12:31:32 ----A---- C:\Windows\system32\dpnet.dll
2012-12-27 12:30:35 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-12-27 12:30:33 ----A---- C:\Windows\system32\schannel.dll
2012-12-27 12:30:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-12-27 12:30:33 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-12-27 12:30:33 ----A---- C:\Windows\system32\drivers\cng.sys
2012-12-27 12:30:30 ----A---- C:\Windows\system32\msxml3.dll
2012-12-27 12:30:15 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-12-27 12:30:10 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-12-27 12:29:52 ----A---- C:\Windows\system32\srcore.dll
2012-12-27 12:29:48 ----A---- C:\Windows\system32\netapi32.dll
2012-12-27 12:29:48 ----A---- C:\Windows\system32\browser.dll
2012-12-27 12:29:48 ----A---- C:\Windows\system32\browcli.dll
2012-12-27 12:29:42 ----A---- C:\Windows\system32\kerberos.dll
2012-12-27 12:29:39 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-12-27 12:29:38 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-12-27 12:29:36 ----A---- C:\Windows\system32\msi.dll
2012-12-27 12:29:32 ----A---- C:\Windows\system32\d3d10level9.dll
2012-12-27 12:29:28 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-12-27 12:29:28 ----A---- C:\Windows\system32\rdpwsx.dll
2012-12-27 12:29:28 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-12-27 12:29:26 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-12-27 12:29:25 ----A---- C:\Windows\system32\profsvc.dll
2012-12-27 12:29:23 ----A---- C:\Windows\system32\synceng.dll
2012-12-27 12:29:13 ----A---- C:\Windows\system32\localspl.dll
2012-12-27 12:29:12 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-27 12:28:21 ----A---- C:\Windows\system32\shell32.dll
2012-12-27 12:28:14 ----A---- C:\Windows\system32\tzres.dll
2012-12-27 12:27:59 ----A---- C:\Windows\system32\ole32.dll
2012-12-27 12:27:56 ----A---- C:\Windows\system32\drivers\srv.sys
2012-12-27 12:27:55 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-12-27 12:27:55 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-12-27 12:27:47 ----A---- C:\Windows\system32\ntdll.dll
2012-12-27 12:27:41 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-12-27 12:27:41 ----A---- C:\Windows\system32\dnsapi.dll
2012-12-27 12:27:40 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-12-27 12:27:20 ----A---- C:\Windows\system32\winlogon.exe
2012-12-27 12:27:16 ----A---- C:\Windows\system32\t2embed.dll
2012-12-27 12:27:10 ----A---- C:\Windows\system32\cryptsvc.dll
2012-12-27 12:27:10 ----A---- C:\Windows\system32\cryptnet.dll
2012-12-27 12:27:10 ----A---- C:\Windows\system32\crypt32.dll
2012-12-27 12:26:40 ----A---- C:\Windows\system32\psisdecd.dll
2012-12-27 12:26:38 ----A---- C:\Windows\system32\wmicmiplugin.dll
2012-12-27 12:26:38 ----A---- C:\Windows\system32\taskschd.dll
2012-12-27 12:26:38 ----A---- C:\Windows\system32\taskeng.exe
2012-12-27 12:26:38 ----A---- C:\Windows\system32\taskcomp.dll
2012-12-27 12:26:38 ----A---- C:\Windows\system32\schtasks.exe
2012-12-27 12:26:38 ----A---- C:\Windows\system32\schedsvc.dll
2012-12-27 12:26:37 ----A---- C:\Windows\system32\msasn1.dll
2012-12-27 12:26:36 ----A---- C:\Windows\system32\rtutils.dll
2012-12-27 12:26:33 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-12-27 12:26:33 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-12-27 12:26:33 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-12-27 12:26:30 ----A---- C:\Windows\system32\oleaut32.dll
2012-12-27 12:26:30 ----A---- C:\Windows\system32\oleacc.dll
2012-12-27 12:26:27 ----A---- C:\Windows\system32\odbc32.dll
2012-12-27 12:26:20 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-12-27 12:26:17 ----A---- C:\Windows\system32\inetcomm.dll
2012-12-27 12:25:56 ----A---- C:\Windows\system32\comctl32.dll
2012-12-27 12:25:56 ----A---- C:\Windows\system32\asycfilt.dll
2012-12-27 12:25:54 ----A---- C:\Windows\system32\mfc40u.dll
2012-12-27 12:25:54 ----A---- C:\Windows\system32\mfc40.dll
2012-12-27 12:25:49 ----A---- C:\Windows\system32\wmp.dll
2012-12-27 12:25:47 ----A---- C:\Windows\system32\wmploc.DLL
2012-12-27 12:25:45 ----A---- C:\Windows\system32\packager.dll
2012-12-27 12:25:23 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-12-27 12:25:20 ----A---- C:\Windows\system32\fontsub.dll
2012-12-27 12:25:18 ----A---- C:\Windows\system32\EncDec.dll
2012-12-27 12:25:16 ----A---- C:\Windows\system32\XpsPrint.dll
2012-12-27 12:25:12 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-12-27 12:25:12 ----A---- C:\Windows\system32\csrsrv.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\tsbyuv.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\msyuv.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\msvidc32.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\msrle32.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\mciavi32.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\iyuv_32.dll
2012-12-27 12:25:10 ----A---- C:\Windows\system32\avifil32.dll
2012-12-27 12:25:08 ----A---- C:\Windows\system32\sbe.dll
2012-12-27 12:25:08 ----A---- C:\Windows\system32\CPFilters.dll
2012-12-27 12:25:04 ----A---- C:\Windows\system32\quartz.dll
2012-12-27 12:25:03 ----A---- C:\Windows\system32\qdvd.dll
2012-12-27 12:24:55 ----A---- C:\Windows\system32\webio.dll
2012-12-27 12:24:55 ----A---- C:\Windows\system32\sspisrv.dll
2012-12-27 12:24:55 ----A---- C:\Windows\system32\sspicli.dll
2012-12-27 12:24:55 ----A---- C:\Windows\system32\secur32.dll
2012-12-27 12:24:55 ----A---- C:\Windows\system32\lsass.exe
2012-12-27 12:24:55 ----A---- C:\Windows\system32\lsasrv.dll
2012-12-27 12:24:52 ----A---- C:\Windows\system32\odbcjt32.dll
2012-12-27 12:24:52 ----A---- C:\Windows\system32\odbccu32.dll
2012-12-27 12:24:52 ----A---- C:\Windows\system32\odbccr32.dll
2012-12-27 12:24:52 ----A---- C:\Windows\system32\odbccp32.dll
2012-12-27 12:24:51 ----A---- C:\Windows\system32\odbctrac.dll
2012-12-27 12:24:46 ----A---- C:\Windows\system32\msvcrt.dll
2012-12-27 12:24:43 ----A---- C:\Windows\system32\srvsvc.dll
2012-12-27 12:24:36 ----A---- C:\Windows\system32\mf.dll
2012-12-27 12:24:35 ----A---- C:\Windows\system32\WMVDECOD.DLL
2012-12-27 12:24:35 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-12-27 12:24:35 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-12-27 12:24:34 ----A---- C:\Windows\system32\XpsRasterService.dll
2012-12-27 12:24:22 ----A---- C:\Windows\system32\upnp.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\wscsvc.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\wscapi.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\winhttp.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\WebClnt.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\slwga.dll
2012-12-27 12:24:21 ----A---- C:\Windows\system32\davclnt.dll
2012-12-27 12:24:15 ----A---- C:\Windows\system32\wmpmde.dll
2012-12-27 12:24:14 ----A---- C:\Windows\system32\consent.exe
2012-12-27 12:24:12 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2012-12-27 12:24:12 ----A---- C:\Windows\system32\secproc_ssp.dll
2012-12-27 12:24:12 ----A---- C:\Windows\system32\secproc_isv.dll
2012-12-27 12:24:12 ----A---- C:\Windows\system32\secproc.dll
2012-12-27 12:24:12 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2012-12-27 12:24:12 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2012-12-27 12:24:12 ----A---- C:\Windows\system32\RMActivate_isv.exe
2012-12-27 12:24:12 ----A---- C:\Windows\system32\RMActivate.exe
2012-12-27 12:24:08 ----A---- C:\Windows\system32\DWrite.dll
2012-12-27 12:24:08 ----A---- C:\Windows\system32\d3d10warp.dll
2012-12-27 12:24:08 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-12-27 12:24:08 ----A---- C:\Windows\system32\d3d10_1.dll
2012-12-27 12:24:08 ----A---- C:\Windows\system32\d2d1.dll
2012-12-27 12:24:03 ----A---- C:\Windows\system32\mfc42u.dll
2012-12-27 12:24:03 ----A---- C:\Windows\system32\mfc42.dll
2012-12-27 12:24:01 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-12-27 12:23:59 ----A---- C:\Windows\system32\StructuredQuery.dll
2012-12-27 12:23:00 ----A---- C:\Windows\system32\drivers\fvevol.sys
2012-12-27 12:22:58 ----A---- C:\Windows\system32\drivers\afd.sys
2012-12-27 12:22:50 ----A---- C:\Windows\system32\xmllite.dll
2012-12-27 12:22:46 ----A---- C:\Windows\system32\ir32_32.dll
2012-12-27 12:22:46 ----A---- C:\Windows\system32\iccvid.dll
2012-12-27 12:22:45 ----A---- C:\Windows\system32\prevhost.exe
2012-12-27 12:22:36 ----A---- C:\Windows\system32\msdri.dll
2012-12-27 12:22:23 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-12-27 12:22:13 ----A---- C:\Windows\system32\CertEnroll.dll
2012-12-27 12:22:12 ----A---- C:\Windows\system32\winresume.exe
2012-12-27 12:22:12 ----A---- C:\Windows\system32\winload.exe
2012-12-27 12:21:33 ----A---- C:\Windows\system32\tquery.dll
2012-12-27 12:21:33 ----A---- C:\Windows\system32\mssrch.dll
2012-12-27 12:21:32 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-12-27 12:21:32 ----A---- C:\Windows\system32\mssvp.dll
2012-12-27 12:21:31 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-12-27 12:21:31 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-12-27 12:21:31 ----A---- C:\Windows\system32\mssphtb.dll
2012-12-27 12:21:31 ----A---- C:\Windows\system32\mssph.dll
2012-12-27 12:21:31 ----A---- C:\Windows\system32\msscntrs.dll
2012-12-27 12:21:22 ----A---- C:\Windows\system32\apphelp.dll
2012-12-27 12:21:20 ----A---- C:\Windows\explorer.exe
2012-12-27 12:21:17 ----A---- C:\Windows\system32\mstscax.dll
2012-12-27 12:21:17 ----A---- C:\Windows\system32\mstsc.exe
2012-12-27 12:21:13 ----A---- C:\Windows\system32\ntshrui.dll
2012-12-27 12:21:09 ----A---- C:\Windows\system32\poqexec.exe
2012-12-27 12:21:07 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-12-27 12:21:05 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-12-27 12:21:05 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-12-27 12:21:05 ----A---- C:\Windows\system32\cdd.dll
2012-12-26 08:08:16 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2012-12-26 08:03:39 ----D---- C:\Program Files\Common Files\Adobe AIR
2012-12-26 08:03:03 ----D---- C:\Program Files\Adobe
2012-12-26 07:59:58 ----D---- C:\Program Files\Common Files\Adobe
2012-12-26 07:59:38 ----D---- C:\ProgramData\Adobe
2012-12-25 17:46:04 ----D---- C:\Users\TescoTaska\AppData\Roaming\WinRAR
2012-12-25 17:46:00 ----D---- C:\Program Files\WinRAR
2012-12-25 17:01:29 ----A---- C:\Windows\system32\PAStiSvc.exe
2012-12-25 17:01:07 ----D---- C:\Windows\PixArt
2012-12-25 16:42:04 ----D---- C:\Users\TescoTaska\AppData\Roaming\Macromedia
2012-12-25 16:42:04 ----D---- C:\Users\TescoTaska\AppData\Roaming\Adobe
2012-12-25 16:41:38 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-12-25 16:20:09 ----D---- C:\Users\TescoTaska\AppData\Roaming\Skype
2012-12-25 16:19:56 ----RD---- C:\Program Files\Skype
2012-12-25 16:19:56 ----D---- C:\Program Files\Common Files\Skype
2012-12-25 16:19:48 ----D---- C:\ProgramData\Skype
2012-12-25 15:57:06 ----A---- C:\Windows\system32\rdpcore.dll
2012-12-25 15:57:06 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-12-25 15:56:53 ----A---- C:\Windows\system32\cabview.dll
2012-12-25 15:52:58 ----A---- C:\Windows\system32\wups2.dll
2012-12-25 15:52:58 ----A---- C:\Windows\system32\wucltux.dll
2012-12-25 15:52:58 ----A---- C:\Windows\system32\wuaueng.dll
2012-12-25 15:52:58 ----A---- C:\Windows\system32\wuauclt.exe
2012-12-25 15:52:46 ----A---- C:\Windows\system32\wups.dll
2012-12-25 15:52:46 ----A---- C:\Windows\system32\wudriver.dll
2012-12-25 15:52:46 ----A---- C:\Windows\system32\wuapi.dll
2012-12-25 15:52:36 ----A---- C:\Windows\system32\wuwebv.dll
2012-12-25 15:52:36 ----A---- C:\Windows\system32\wuapp.exe
2012-12-25 14:54:25 ----D---- C:\Windows\system32\Lang
2012-12-25 14:54:25 ----A---- C:\Windows\system32\igxpun.exe
2012-12-25 14:49:02 ----D---- C:\Users\TescoTaska\AppData\Roaming\.minecraft
2012-12-25 14:48:44 ----D---- C:\ProgramData\Sun
2012-12-25 14:48:44 ----D---- C:\Program Files\Common Files\Java
2012-12-25 14:48:00 ----A---- C:\Windows\system32\deployJava1.dll
2012-12-25 14:47:59 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-12-25 14:47:59 ----A---- C:\Windows\system32\javaws.exe
2012-12-25 14:47:34 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2012-12-25 14:47:34 ----A---- C:\Windows\system32\javaw.exe
2012-12-25 14:47:34 ----A---- C:\Windows\system32\java.exe
2012-12-25 14:47:18 ----D---- C:\Program Files\Java
2012-12-25 14:46:50 ----SHD---- C:\Windows\Installer
2012-12-25 14:30:38 ----D---- C:\Users\TescoTaska\AppData\Roaming\Opera
2012-12-25 14:30:31 ----D---- C:\Program Files\Opera
2012-12-25 14:13:31 ----N---- C:\Windows\system32\MpSigStub.exe
2012-12-25 14:08:08 ----D---- C:\Windows\system32\Macromed
2012-12-25 07:56:39 ----D---- C:\Program Files\Metin2
2012-12-25 07:46:09 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-25 07:42:18 ----D---- C:\Users\TescoTaska\AppData\Roaming\Identities
2012-12-25 07:40:11 ----SD---- C:\Users\TescoTaska\AppData\Roaming\Microsoft
2012-12-25 07:40:11 ----D---- C:\Users\TescoTaska\AppData\Roaming\Media Center Programs
2012-12-25 07:39:10 ----SHD---- C:\ProgramData\Šablony
2012-12-25 07:39:10 ----SHD---- C:\ProgramData\Nabídka Start
2012-12-25 07:39:09 ----SHD---- C:\ProgramData\Plocha
2012-12-25 07:39:09 ----SHD---- C:\ProgramData\Oblíbené položky
2012-12-25 07:39:09 ----SHD---- C:\ProgramData\Dokumenty
2012-12-25 07:39:09 ----SHD---- C:\ProgramData\Data aplikací
2012-12-25 07:21:22 ----D---- C:\Windows\SoftwareDistribution
2012-12-25 07:18:00 ----D---- C:\Windows\Prefetch
2012-12-25 07:17:30 ----ASH---- C:\hiberfil.sys
2012-12-25 07:16:39 ----D---- C:\Windows\Panther
2012-12-19 15:36:10 ----A---- C:\Windows\system32\drivers\VBoxNetAdp.sys
2012-12-19 15:35:16 ----A---- C:\Windows\system32\drivers\VBoxNetFlt.sys
2012-12-19 15:35:14 ----A---- C:\Windows\system32\VBoxNetFltNobj.dll

======List of files/folders modified in the last 1 month======

2013-01-15 22:11:29 ----D---- C:\Windows\Temp
2013-01-15 22:11:21 ----RD---- C:\Program Files
2013-01-15 21:34:53 ----D---- C:\Windows\system32\drivers
2013-01-15 18:31:50 ----SHD---- C:\Config.Msi
2013-01-15 18:31:50 ----D---- C:\Program Files\Common Files\microsoft shared
2013-01-15 18:31:32 ----D---- C:\Windows\System32
2013-01-15 18:30:58 ----RSD---- C:\Windows\assembly
2013-01-15 18:30:43 ----D---- C:\Windows\Microsoft.NET
2013-01-15 18:30:19 ----SHD---- C:\System Volume Information
2013-01-15 18:25:19 ----D---- C:\Windows\Logs
2013-01-15 18:25:19 ----D---- C:\Windows
2013-01-15 17:45:46 ----D---- C:\Windows\system32\config
2013-01-14 15:10:08 ----D---- C:\Windows\system32\wdi
2013-01-13 21:39:39 ----D---- C:\Program Files\Common Files
2013-01-13 21:39:22 ----HD---- C:\ProgramData
2013-01-12 20:22:56 ----D---- C:\Windows\winsxs
2013-01-12 17:17:15 ----D---- C:\Windows\inf
2013-01-12 09:59:13 ----D---- C:\Windows\system32\cs-CZ
2013-01-11 19:26:39 ----D---- C:\Windows\system32\catroot
2013-01-11 19:26:27 ----D---- C:\Windows\system32\catroot2
2013-01-11 17:59:55 ----D---- C:\Windows\system32\Tasks
2013-01-11 07:39:48 ----D---- C:\Windows\rescache
2013-01-08 21:54:48 ----D---- C:\Windows\system32\DriverStore
2013-01-06 20:02:37 ----RSD---- C:\Windows\Fonts
2012-12-29 07:23:07 ----D---- C:\Windows\system32\migration
2012-12-29 07:23:07 ----D---- C:\Program Files\Internet Explorer
2012-12-28 13:15:10 ----D---- C:\Windows\Tasks
2012-12-28 08:07:55 ----D---- C:\Windows\system32\en-US
2012-12-27 20:13:34 ----D---- C:\Windows\PolicyDefinitions
2012-12-27 16:50:49 ----D---- C:\Windows\AppPatch
2012-12-27 16:50:49 ----D---- C:\Program Files\Common Files\System
2012-12-27 16:50:48 ----D---- C:\Windows\ehome
2012-12-27 16:50:48 ----D---- C:\Program Files\Windows Mail
2012-12-27 16:50:44 ----D---- C:\Program Files\Windows Journal
2012-12-27 16:50:43 ----D---- C:\Windows\system32\Boot
2012-12-27 16:50:41 ----D---- C:\Program Files\Windows Media Player
2012-12-27 16:50:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-27 16:50:29 ----D---- C:\Windows\system32\wbem
2012-12-27 12:14:42 ----D---- C:\Windows\system
2012-12-25 17:01:07 ----D---- C:\Windows\twain_32
2012-12-25 16:34:49 ----D---- C:\Windows\system32\LogFiles
2012-12-25 15:23:37 ----D---- C:\Windows\LiveKernelReports
2012-12-25 14:13:13 ----D---- C:\Windows\system32\restore
2012-12-25 13:13:55 ----D---- C:\Windows\system32\NDF
2012-12-25 11:15:27 ----SD---- C:\ProgramData\Microsoft
2012-12-25 08:01:58 ----D---- C:\Windows\debug
2012-12-25 07:42:15 ----SHD---- C:\$Recycle.Bin
2012-12-25 07:40:10 ----RD---- C:\Users
2012-12-25 07:39:11 ----SHD---- C:\Recovery
2012-12-25 07:39:10 ----D---- C:\Program Files\Windows NT
2012-12-25 07:27:19 ----D---- C:\Windows\system32\CodeIntegrity
2012-12-25 07:22:40 ----D---- C:\Windows\system32\sysprep
2012-12-25 07:21:03 ----D---- C:\Windows\system32\drivers\UMDF
2012-12-25 07:19:02 ----D---- C:\Windows\CSC
2012-12-25 07:16:06 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2012-12-19 188328]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2012-12-19 94632]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam.sys [2012-04-15 1068216]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2013-01-08 25280]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 PAC207;VideoCAM GE111; C:\Windows\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-07-14 84992]
R3 SMSCIRDA;SMSC Infrared Device Driver; C:\Windows\system32\DRIVERS\SMSCirda.sys [2007-04-25 31232]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2012-12-19 104872]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2012-12-19 116136]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393216]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-14 1436160]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 STI Simulator;STI Simulator; C:\Windows\System32\PAStiSvc.exe [2005-01-14 53248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-09 251400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-27 1343400]

-----------------EOF-----------------

[vyosek]

Zdravim

Neni naaahodou i tohle http://forum.viry.cz/memberlist.php?mod ... le&u=47271 Vas ucet??

Co nejaky antivir??

Na tu nejvyssi verzi windows Ultimate mate zakoupenou licenci??

[PrumyslovakCV]

Dobrý den,
Ano ten účet je můj, chtěl jsem si zaslat heslo, ale nešlo mi to, stále hlásilo, že je něco špatně s emailem.
Antivir jsi nejsem jist, jaký použít a o jestli mám zakoupené to netuším, takhle mi to instaloval známý, ale z DVDčka normálně.

[vyosek]

Napiste mi na mail jake heslo tam chcete a jaky mail by tam mel byt a ja to necham zmenit

Z DVD to muze byt instalovano, ale pokud k nemu mate zakoupeny klic, coz asi nemate ze...A navic tam neni ServicePack 1, to mozna tim, ze neprosly windows overenim pravosti...

[PrumyslovakCV]

Email byl odeslán a netuším opravdu, jediné co vím, to je to, že počítač v podstatě nepracuje, jak by měl

[vyosek]

OK, heslo zmeneno, dale pouzivejte puvodni nick, tento bude zablokovan - info mate v mailu

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

[PrumyslovakCV]

Dobře, děkuji tento problém dořeším pod tímto účtem, poté poprosím o zablokování, jinak log dodám ihned jak vyjede.

[vyosek]

Uz i tento problem doreste pod starym nickem, do nasi interni sekce jsem jiz podal navrh administartorum na blokaci tohoto uctu...

[PrumyslovakCV]

Dobře, rozumím díky... Takže hned jak vyjede log hodím ho sem.

[TescoTaska]

1.část
OTL logfile created on: 15.1.2013 22:48:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\TescoTaska\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,70 Gb Available Physical Memory | 35,23% Memory free
3,98 Gb Paging File | 2,30 Gb Available in Paging File | 57,85% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,43 Gb Total Space | 8,79 Gb Free Space | 11,80% Space Free | Partition Type: NTFS
Drive G: | 100,00 Mb Total Space | 71,54 Mb Free Space | 71,54% Space Free | Partition Type: NTFS

Computer Name: TESCOTASKA-PC | User Name: TescoTaska | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013.01.15 22:48:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\TescoTaska\Desktop\OTL.exe
PRC - [2012.12.25 14:30:32 | 000,879,080 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012.12.14 11:08:50 | 001,436,160 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011.07.17 05:56:48 | 001,038,848 | ---- | M] () -- C:\Program Files\WebcamMax\wcmmon.exe
PRC - [2011.03.15 17:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 02:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2005.01.14 09:32:38 | 000,053,248 | ---- | M] () -- C:\Windows\System32\PAStiSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013.01.09 18:10:22 | 014,586,888 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_146.dll
MOD - [2012.12.25 14:30:34 | 000,835,584 | ---- | M] () -- C:\Program Files\Opera\gstreamer\gstreamer.dll
MOD - [2012.12.25 14:30:34 | 000,312,832 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll
MOD - [2012.12.25 14:30:34 | 000,158,208 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
MOD - [2012.12.25 14:30:34 | 000,101,888 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll
MOD - [2012.12.25 14:30:34 | 000,096,256 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll
MOD - [2012.12.25 14:30:34 | 000,094,208 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll
MOD - [2012.12.25 14:30:34 | 000,093,696 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll
MOD - [2012.12.25 14:30:34 | 000,073,728 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll
MOD - [2012.12.25 14:30:34 | 000,067,072 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll
MOD - [2012.12.25 14:30:34 | 000,062,976 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll
MOD - [2012.12.25 14:30:34 | 000,057,344 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll
MOD - [2012.12.25 14:30:34 | 000,038,912 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll
MOD - [2011.07.17 05:56:48 | 001,038,848 | ---- | M] () -- C:\Program Files\WebcamMax\wcmmon.exe


========== Services (SafeList) ==========

SRV - [2013.01.09 18:10:37 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.12.27 16:06:48 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012.12.14 11:08:50 | 001,436,160 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.11.09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2005.01.14 09:32:38 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PAStiSvc.exe -- (STI Simulator)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2013.01.08 22:28:19 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2012.12.19 15:36:24 | 000,188,328 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2012.12.19 15:36:10 | 000,104,872 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2012.12.19 15:35:16 | 000,116,136 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2012.12.19 15:35:16 | 000,094,632 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2012.04.15 22:32:14 | 001,068,216 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\wcmvcam.sys -- (WCMVCAM)
DRV - [2011.05.13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2011.05.13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 00:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009.07.13 23:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009.07.13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2007.04.25 13:32:42 | 000,031,232 | ---- | M] (SMSC) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smscirda.sys -- (SMSCIRDA)
DRV - [2005.04.08 10:46:18 | 000,162,176 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\pfc027.sys -- (PAC207)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\..\SearchScopes\{E174653E-7934-465B-A099-5AD7D92A0EC9}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT3220468
IE - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\TescoTaska\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)


[2012.12.29 17:08:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions
[2012.12.29 17:08:03 | 000,000,000 | ---D | M] (uTorrentControl_v2) -- C:\Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}

O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000\..\Toolbar\WebBrowser: (uTorrentControl_v2 Toolbar) - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000..\Run: [Facebook Update] C:\Users\TescoTaska\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-2443489386-3567915100-2015054541-1000..\Run: [WebcamMaxAutoRun] C:\Program Files\WebcamMax\wcmmon.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\TescoTaska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hamachi.lnk = C:\Program Files\Hamachik\hamachi.exe (LogMeIn Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FFE4CCB7-8E09-4C5B-B0E3-F3E67A9661A7}: DhcpNameServer = 10.0.0.138 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.tsc2 - C:\Windows\System32\tsc2_codec32.dll (TechSmith Corporation)
Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013.01.15 22:47:54 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\TescoTaska\Desktop\OTL.exe
[2013.01.15 22:11:21 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.01.15 22:11:19 | 000,000,000 | ---D | C] -- C:\rsit
[2013.01.15 18:31:32 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2013.01.15 18:31:32 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2013.01.15 18:31:32 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2013.01.15 18:31:31 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2013.01.15 18:31:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2013.01.15 18:31:31 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2013.01.15 18:31:31 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2013.01.15 18:31:30 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2013.01.15 18:31:30 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2013.01.15 18:31:30 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2013.01.15 18:31:29 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2013.01.15 18:31:29 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2013.01.15 18:31:26 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2013.01.15 18:31:24 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2013.01.15 18:31:24 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2013.01.15 18:31:24 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2013.01.15 18:31:24 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2013.01.15 18:31:23 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2013.01.15 18:31:22 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2013.01.15 18:31:22 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2013.01.15 18:31:22 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2013.01.15 18:31:22 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2013.01.15 18:31:21 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2013.01.15 18:31:21 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2013.01.15 18:31:20 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2013.01.15 18:31:20 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2013.01.15 18:31:20 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2013.01.15 18:31:20 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2013.01.15 18:31:19 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2013.01.15 18:31:18 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2013.01.15 18:31:18 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2013.01.15 18:31:18 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2013.01.15 18:31:18 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2013.01.15 18:31:17 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2013.01.15 18:31:17 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2013.01.15 18:31:16 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2013.01.15 18:31:16 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2013.01.15 18:31:16 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2013.01.15 18:31:16 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2013.01.15 18:31:15 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2013.01.15 18:31:15 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2013.01.15 18:31:14 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2013.01.15 18:31:14 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2013.01.15 18:31:14 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2013.01.15 18:31:14 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2013.01.15 18:31:14 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2013.01.15 18:31:12 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2013.01.15 18:31:11 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2013.01.15 18:31:11 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2013.01.15 18:31:11 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2013.01.15 18:31:11 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2013.01.15 18:31:11 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2013.01.15 18:31:10 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2013.01.15 18:31:08 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2013.01.15 18:31:08 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2013.01.15 18:31:08 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2013.01.15 18:31:07 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2013.01.15 18:31:07 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2013.01.15 18:31:07 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2013.01.15 18:31:06 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2013.01.15 18:31:05 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2013.01.15 18:31:05 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2013.01.15 18:31:05 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2013.01.15 18:31:05 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2013.01.15 18:31:05 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2013.01.15 18:31:05 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2013.01.15 18:31:04 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2013.01.15 18:31:04 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2013.01.15 18:31:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2013.01.15 18:31:04 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2013.01.15 18:31:04 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2013.01.15 18:31:03 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2013.01.15 18:31:03 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2013.01.15 18:31:03 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2013.01.15 18:31:02 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2013.01.15 18:31:02 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2013.01.15 18:31:01 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2013.01.15 18:31:00 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2013.01.15 18:31:00 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2013.01.15 18:30:59 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2013.01.15 18:30:59 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2013.01.15 18:30:58 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2013.01.15 18:30:52 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2013.01.15 18:30:51 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2013.01.15 18:30:51 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2013.01.15 18:30:51 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2013.01.15 18:30:51 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2013.01.15 18:30:51 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2013.01.15 18:30:51 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2013.01.15 18:30:51 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2013.01.15 18:30:50 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2013.01.15 18:25:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2013.01.15 18:25:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2013.01.15 18:25:15 | 000,000,000 | ---D | C] -- C:\Games
[2013.01.15 18:24:08 | 009,299,872 | ---- | C] (Wargaming.net ) -- C:\Users\TescoTaska\Desktop\WoT_internet_install_eu.exe
[2013.01.15 16:23:53 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\Desktop\Moje
[2013.01.13 21:41:50 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\AppData\Local\TechSmith
[2013.01.13 21:41:34 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\AppData\Roaming\TechSmith
[2013.01.13 21:41:13 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\Documents\Camtasia Studio
[2013.01.13 21:39:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
[2013.01.13 21:39:52 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2013.01.13 21:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TechSmith Shared
[2013.01.13 21:39:22 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2013.01.13 21:39:22 | 000,000,000 | ---D | C] -- C:\Program Files\TechSmith
[2013.01.13 20:09:26 | 000,000,000 | ---D | C] -- C:\SFFuutonMT2
[2013.01.13 19:40:48 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\VirtualBox VMs
[2013.01.13 18:47:57 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\Desktop\Hamares 2 - Klient v1.1
[2013.01.12 20:24:44 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\AppData\Roaming\TS3Client
[2013.01.12 20:22:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
[2013.01.12 20:22:01 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2013.01.11 19:28:37 | 002,344,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.01.11 19:27:52 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013.01.11 19:27:52 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013.01.11 19:27:52 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.11 19:27:51 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013.01.11 19:27:51 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013.01.11 19:27:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013.01.11 19:27:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013.01.11 19:26:56 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2013.01.11 19:26:56 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2013.01.11 19:26:56 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\System32\fpb.rs
[2013.01.11 19:26:56 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc-nz.rs
[2013.01.11 19:26:56 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2013.01.11 19:26:56 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\System32\csrr.rs
[2013.01.11 19:26:56 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\System32\cob-au.rs
[2013.01.11 19:26:56 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\System32\usk.rs
[2013.01.11 19:26:56 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2013.01.11 19:26:56 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2013.01.11 19:26:56 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi.rs
[2013.01.11 19:26:56 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\System32\djctq.rs
[2013.01.11 19:26:55 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\System32\cero.rs
[2013.01.11 19:26:55 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2013.01.11 19:26:55 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc.rs
[2013.01.11 19:26:55 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2013.01.11 19:26:43 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013.01.09 13:45:17 | 000,000,000 | ---D | C] -- C:\Users\TescoTaska\Documents\Navicat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013.01.15 22:51:02 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.01.15 22:48:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\TescoTaska\Desktop\OTL.exe
[2013.01.15 22:20:33 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000UA.job
[2013.01.15 22:10:38 | 000,781,383 | ---- | M] () -- C:\Users\TescoTaska\Desktop\RSIT.exe
[2013.01.15 22:09:01 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.01.15 19:55:07 | 000,010,975 | ---- | M] () -- C:\Users\TescoTaska\Desktop\sdsds.PNG
[2013.01.15 18:25:18 | 000,000,769 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2013.01.15 18:24:56 | 009,299,872 | ---- | M] (Wargaming.net ) -- C:\Users\TescoTaska\Desktop\WoT_internet_install_eu.exe
[2013.01.15 17:34:54 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.01.15 17:34:54 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.15 17:33:28 | 000,046,279 | ---- | M] () -- C:\Users\TescoTaska\Desktop\408731_192318334247138_1592791577_n.jpg
[2013.01.15 17:27:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.01.15 17:27:30 | 1603,870,720 | -HS- | M] () -- C:\hiberfil.sys
[2013.01.15 16:45:19 | 000,006,656 | ---- | M] () -- C:\Users\TescoTaska\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.01.15 16:23:15 | 000,000,905 | ---- | M] () -- C:\Users\TescoTaska\Desktop\PortMap.ini
[2013.01.15 15:06:09 | 000,197,275 | ---- | M] () -- C:\Users\TescoTaska\Desktop\kkokokok.png
[2013.01.15 15:06:08 | 000,000,132 | ---- | M] () -- C:\Users\TescoTaska\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2013.01.14 22:41:46 | 000,034,611 | ---- | M] () -- C:\Users\TescoTaska\Desktop\3784_521965114502787_386579398_n.jpg
[2013.01.14 22:37:25 | 000,066,957 | ---- | M] () -- C:\Users\TescoTaska\Desktop\troll.png
[2013.01.14 22:19:13 | 037,826,942 | ---- | M] () -- C:\Users\TescoTaska\Desktop\Rendery-by-MiCra.rar
[2013.01.14 15:49:05 | 000,000,600 | ---- | M] () -- C:\Users\TescoTaska\AppData\Roaming\winscp.rnd
[2013.01.13 21:39:54 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Camtasia Studio 8.lnk
[2013.01.13 21:06:34 | 001,588,267 | ---- | M] () -- C:\Users\TescoTaska\Desktop\NovyKlientUkazka.PNG
[2013.01.13 21:03:49 | 001,252,508 | ---- | M] () -- C:\Users\TescoTaska\Desktop\NovyScreenNovehoKlientuVeciGangnamStyle.PNG
[2013.01.13 15:49:03 | 000,355,677 | ---- | M] () -- C:\Users\TescoTaska\Desktop\TTTTT.png
[2013.01.13 15:08:44 | 000,162,055 | ---- | M] () -- C:\Users\TescoTaska\Desktop\IMAG0070.jpg
[2013.01.13 14:27:32 | 000,136,519 | ---- | M] () -- C:\Users\TescoTaska\Desktop\IMAG0062.jpg
[2013.01.13 13:20:02 | 000,000,926 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000Core.job
[2013.01.12 20:22:04 | 000,001,124 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2013.01.12 17:17:15 | 000,643,722 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.01.12 17:17:15 | 000,620,290 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.01.12 17:17:15 | 000,126,130 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.01.12 17:17:15 | 000,110,478 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.01.12 13:33:30 | 003,958,210 | ---- | M] () -- C:\Users\TescoTaska\Desktop\Metin2Mod_PL_20122012.exe
[2013.01.12 12:22:25 | 821,695,686 | ---- | M] () -- C:\Users\TescoTaska\Desktop\Icebeatzz - Client.rar
[2013.01.12 10:00:51 | 003,632,208 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.01.12 00:02:42 | 000,809,539 | ---- | M] () -- C:\Users\TescoTaska\Desktop\mysql_icebeatzz.tar.gz
[2013.01.09 18:10:22 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.01.09 18:10:22 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[TescoTaska]

2.část
========== Files Created - No Company Name ==========

[2013.01.15 22:10:36 | 000,781,383 | ---- | C] () -- C:\Users\TescoTaska\Desktop\RSIT.exe
[2013.01.15 19:55:07 | 000,010,975 | ---- | C] () -- C:\Users\TescoTaska\Desktop\sdsds.PNG
[2013.01.15 18:25:18 | 000,000,769 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2013.01.15 17:33:28 | 000,046,279 | ---- | C] () -- C:\Users\TescoTaska\Desktop\408731_192318334247138_1592791577_n.jpg
[2013.01.15 15:06:04 | 000,197,275 | ---- | C] () -- C:\Users\TescoTaska\Desktop\kkokokok.png
[2013.01.14 22:41:46 | 000,034,611 | ---- | C] () -- C:\Users\TescoTaska\Desktop\3784_521965114502787_386579398_n.jpg
[2013.01.14 22:37:25 | 000,066,957 | ---- | C] () -- C:\Users\TescoTaska\Desktop\troll.png
[2013.01.14 22:12:47 | 037,826,942 | ---- | C] () -- C:\Users\TescoTaska\Desktop\Rendery-by-MiCra.rar
[2013.01.14 15:27:10 | 000,006,656 | ---- | C] () -- C:\Users\TescoTaska\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.01.13 21:39:54 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Camtasia Studio 8.lnk
[2013.01.13 21:06:33 | 001,588,267 | ---- | C] () -- C:\Users\TescoTaska\Desktop\NovyKlientUkazka.PNG
[2013.01.13 21:03:48 | 001,252,508 | ---- | C] () -- C:\Users\TescoTaska\Desktop\NovyScreenNovehoKlientuVeciGangnamStyle.PNG
[2013.01.13 15:48:59 | 000,355,677 | ---- | C] () -- C:\Users\TescoTaska\Desktop\TTTTT.png
[2013.01.13 15:45:30 | 000,136,519 | ---- | C] () -- C:\Users\TescoTaska\Desktop\IMAG0062.jpg
[2013.01.13 15:45:03 | 000,162,055 | ---- | C] () -- C:\Users\TescoTaska\Desktop\IMAG0070.jpg
[2013.01.12 20:22:04 | 000,001,124 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2013.01.12 13:32:17 | 003,958,210 | ---- | C] () -- C:\Users\TescoTaska\Desktop\Metin2Mod_PL_20122012.exe
[2013.01.12 10:34:01 | 821,695,686 | ---- | C] () -- C:\Users\TescoTaska\Desktop\Icebeatzz - Client.rar
[2013.01.12 00:02:40 | 000,809,539 | ---- | C] () -- C:\Users\TescoTaska\Desktop\mysql_icebeatzz.tar.gz
[2013.01.06 16:44:47 | 001,589,248 | ---- | C] () -- C:\Windows\System32\libmysql_d.dll
[2012.12.31 21:53:19 | 001,181,836 | ---- | C] () -- C:\Users\TescoTaska\AppData\Roaming\Sdat.exe
[2012.12.29 18:12:26 | 000,000,600 | ---- | C] () -- C:\Users\TescoTaska\AppData\Roaming\winscp.rnd
[2012.12.28 20:28:02 | 000,000,132 | ---- | C] () -- C:\Users\TescoTaska\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2012.12.26 14:55:53 | 000,000,132 | ---- | C] () -- C:\Users\TescoTaska\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2012.12.25 17:01:29 | 000,053,248 | ---- | C] () -- C:\Windows\System32\PAStiSvc.exe

========== ZeroAccess Check ==========

[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.01.13 16:44:12 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\.minecraft
[2012.12.28 09:27:46 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.12.25 14:30:39 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Opera
[2013.01.13 21:41:34 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\TechSmith
[2013.01.13 13:30:51 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\TS3Client
[2013.01.15 19:45:21 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\uTorrent
[2013.01.08 21:56:00 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\WebcamMax

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 05:53:46 | 000,016,020 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2012.12.25 16:41:40 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.28 13:15:06 | 000,000,926 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000Core.job
[2012.12.28 13:15:10 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000UA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\gg\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\gg\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2010.11.11 15:33:52 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\gg\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2012.09.02 02:03:18 | 002,613,248 | ---- | M] () MD5=77DB2F02C499C7EFB7C8D95B634CD2BF -- C:\gg\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2012.09.02 02:03:18 | 002,613,248 | ---- | M] () MD5=77DB2F02C499C7EFB7C8D95B634CD2BF -- C:\gg\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2012.09.02 02:03:18 | 002,613,248 | ---- | M] () MD5=77DB2F02C499C7EFB7C8D95B634CD2BF -- C:\gg\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
[2012.09.02 02:03:18 | 002,614,272 | ---- | M] () MD5=D3FDD5542AAA8F1466418F1AA5BC6B29 -- C:\gg\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\gg\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\gg\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\gg\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\gg\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2012.03.30 11:29:05 | 001,287,024 | ---- | M] (Microsoft Corporation) MD5=55E9965552741F3850CB22CBBA9671ED -- C:\Windows\System32\drivers\tcpip.sys
[2012.03.30 11:29:05 | 001,287,024 | ---- | M] (Microsoft Corporation) MD5=55E9965552741F3850CB22CBBA9671ED -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_b2f57423c7b8dea8\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2012.03.30 11:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2012.03.30 10:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24407126 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[2010.11.11 15:34:50 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\gg\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_b33b1c29c7858b92\tcpip.sys
[2012.03.30 11:08:19 | 001,303,408 | ---- | M] (Microsoft Corporation) MD5=E47C2844A1605A44178F4281E4D58B3D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_b38bb990e0ccc871\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\gg\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.11 15:33:52 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\gg\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\04fad24d60803f3274a48d2050cb954c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\04fad24d60803f3274a48d2050cb954c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2c26b18ba9c417242a6008b4ed02ef0a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2c26b18ba9c417242a6008b4ed02ef0a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3aabb5b41372db579bd4dcfb96cbcf64\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3aabb5b41372db579bd4dcfb96cbcf64\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\529152c0644754df5337cc21062af233\*.tmp files -> C:\Windows\SoftwareDistribution\Download\529152c0644754df5337cc21062af233\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\820cbb86beb3aca244504905730389bc\*.tmp files -> C:\Windows\SoftwareDistribution\Download\820cbb86beb3aca244504905730389bc\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\84ec259c0b1df06e2815ca0d6d510ff9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\84ec259c0b1df06e2815ca0d6d510ff9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\984860bf1203e1b4a15ae0974b462080\*.tmp files -> C:\Windows\SoftwareDistribution\Download\984860bf1203e1b4a15ae0974b462080\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9e93fec6d1f0b041ae06ca9adf8f3805\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9e93fec6d1f0b041ae06ca9adf8f3805\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b10fbc602838099101a505ed9b31eae9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b10fbc602838099101a505ed9b31eae9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b676b86da7f8bca4e74fc6c3c697069c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b676b86da7f8bca4e74fc6c3c697069c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\baa7a2b2031ecf51847caab66c423bd7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\baa7a2b2031ecf51847caab66c423bd7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\be8ccfb9dcd069aa5ef6a2641bc1f74a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\be8ccfb9dcd069aa5ef6a2641bc1f74a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f14b553c29e53c772ba86fdd98fcd17a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f14b553c29e53c772ba86fdd98fcd17a\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.01.13 16:44:12 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\.minecraft
[2012.12.28 09:27:43 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Adobe
[2012.12.28 09:27:46 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2013.01.15 19:46:04 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Hamachi
[2012.12.25 07:42:18 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Identities
[2012.12.25 16:42:04 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Macromedia
[2009.07.14 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Media Center Programs
[2012.12.28 13:29:47 | 000,000,000 | --SD | M] -- C:\Users\TescoTaska\AppData\Roaming\Microsoft
[2012.12.29 17:08:01 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Mozilla
[2012.12.25 14:30:39 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Opera
[2013.01.15 23:03:10 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\Skype
[2013.01.13 21:41:34 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\TechSmith
[2013.01.13 13:30:51 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\TS3Client
[2013.01.15 19:45:21 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\uTorrent
[2013.01.08 21:56:00 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\WebcamMax
[2012.12.25 17:46:13 | 000,000,000 | ---D | M] -- C:\Users\TescoTaska\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2012.12.31 22:01:42 | 001,181,836 | ---- | M] () -- C:\Users\TescoTaska\AppData\Roaming\Sdat.exe
[2012.12.26 08:03:30 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\TescoTaska\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013.01.15 22:09:01 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.01.13 13:20:02 | 000,000,926 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000Core.job
[2013.01.15 22:20:33 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2443489386-3567915100-2015054541-1000UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.01.15 17:34:54 | 000,014,224 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.15 17:34:54 | 000,014,224 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.11.09 11:27:12 | 017,877,168 | R--- | M] (Skype Technologies S.A.)
"Facebook Update" = "C:\Users\TescoTaska\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver -- [2012.12.28 13:15:02 | 000,138,096 | ---- | M] (Facebook Inc.)
"uTorrent" = "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED -- [2012.12.29 17:07:25 | 000,735,608 | ---- | M] (BitTorrent, Inc.)
"WebcamMaxAutoRun" = "C:\Program Files\WebcamMax\wcmmon.exe" -a -- [2011.07.17 05:56:48 | 001,038,848 | ---- | M] ()

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.11.16 17:33:24 | 000,757,280 | ---- | M] (Microsoft Corporation) MD5=B201AF83DF2E85323E29EB83E4046810 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012.12.25 14:30:32 | 000,879,080 | ---- | M] (Opera Software) MD5=3A783497492D685E5F8D61FE06F4FE5A -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.01.15 22:51:02 | 000,000,512 | ---- | M] () MD5=DE48E4F229EB6433E5CB8D2A92B1859B -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2009.02.06 13:57:26 | 000,067,756 | ---- | M] () -- \Program Files\Counter-Strike Xtreme V6\cstrike\sound\misc\cracker1.wav
[2013.01.05 23:53:17 | 000,169,590 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\china_firecracker.mp3
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_1.mss
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_2.mss
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_3.mss
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_4.mss
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_5.mss
[2013.01.05 23:53:17 | 000,000,212 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_6.mss
[2013.01.05 23:53:17 | 000,000,138 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_fly.mss
[2013.01.05 23:53:17 | 000,000,148 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_xmas.mss
[2013.01.05 23:53:17 | 000,183,926 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\firecracker_xmas.wav
[2013.01.05 23:53:17 | 000,000,149 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\sound\effect\etc\firecracker\newyear_firecracker.mss
[2013.01.05 23:50:42 | 000,004,224 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker.dds
[2013.01.05 23:50:42 | 000,960,962 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker.mde
[2013.01.05 23:50:42 | 000,013,765 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_1.mse
[2013.01.05 23:50:42 | 000,000,920 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_1.msf
[2013.01.05 23:50:42 | 000,013,765 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_2.mse
[2013.01.05 23:50:42 | 000,000,920 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_2.msf
[2013.01.05 23:50:42 | 000,013,765 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_3.mse
[2013.01.05 23:50:42 | 000,000,920 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_3.msf
[2013.01.05 23:50:42 | 000,013,984 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_4.mse
[2013.01.05 23:50:42 | 000,000,921 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_4.msf
[2013.01.05 23:50:42 | 000,013,860 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_5.mse
[2013.01.05 23:50:42 | 000,000,921 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_5.msf
[2013.01.05 23:50:42 | 000,013,767 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_6.mse
[2013.01.05 23:50:42 | 000,000,921 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_6.msf
[2013.01.05 23:50:42 | 000,008,668 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_fly.mse
[2013.01.05 23:50:42 | 000,016,512 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_w.dds
[2013.01.05 23:50:42 | 000,088,373 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_xmas.mse
[2013.01.05 23:50:42 | 000,000,923 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\firecracker_xmas.msf
[2013.01.05 23:50:42 | 000,038,150 | ---- | M] () -- \Users\TescoTaska\Desktop\Hamares server věci\Aureria-Unpacked\data\ymir work\effect\etc\firecracker\newyear_firecracker.mse
[2013.01.12 22:57:16 | 000,165,372 | ---- | M] () -- \Users\TescoTaska\Desktop\Moje\Rendery by MiCra\Cracked-Facebook-Logo.png
[2008.06.25 09:02:50 | 000,001,128 | ---- | M] () -- \Users\TescoTaska\Desktop\Webové stránky\smilies\teasing\smokingcrack.gif

< *keygen* /s >
[2013.01.13 21:36:21 | 000,000,685 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Microsoft\Windows\Recent\~Camtasia Studio 8.0.3 Build 1018 + Keygen (2).lnk
[2013.01.13 21:36:21 | 000,001,138 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Microsoft\Windows\Recent\~Camtasia Studio 8.0.3 Build 1018 + Keygen.lnk
[2013.01.12 23:01:38 | 000,019,624 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\uTorrent\~Camtasia Studio 8.0.3 Build 1018 + Keygen.torrent
[2012.12.22 11:04:50 | 000,313,344 | ---- | M] () -- \Users\TescoTaska\Desktop\Adobe-Photoshop-CS5-Keygen.exe
[2013.01.13 10:29:45 | 253,096,610 | ---- | M] () -- \Users\TescoTaska\Downloads\~Camtasia Studio 8.0.3 Build 1018 + Keygen\~Camtasia Studio 8.0.3 Build 1018 + Keygen.tgz
[2013.01.05 20:43:34 | 000,071,436 | ---- | M] () -- \Windows\Prefetch\ADOBE-PHOTOSHOP-CS5-KEYGEN.EX-7957BAF5.pf

< *loader* /s >
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \gg\Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | ---- | M] () -- \gg\Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.03.02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2009.05.23 23:05:22 | 000,169,384 | ---- | M] () -- \Program Files\Counter-Strike Xtreme V6\cstrike\models\qloader.mdl
[2009.05.23 22:59:34 | 000,352,548 | ---- | M] () -- \Program Files\Counter-Strike Xtreme V6\valve\models\loader.mdl
[2009.05.23 22:59:54 | 000,012,764 | ---- | M] () -- \Program Files\Counter-Strike Xtreme V6\valve\sound\ambience\loader_hydra1.wav
[2009.05.23 22:59:54 | 000,012,164 | ---- | M] () -- \Program Files\Counter-Strike Xtreme V6\valve\sound\ambience\loader_step1.wav
[2012.11.12 22:46:00 | 000,002,223 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_azul_preloader.swf
[2012.11.12 22:46:00 | 000,001,841 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_black_outline_preloader.swf
[2012.11.12 22:46:00 | 000,001,810 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_black_preloader.swf
[2012.11.12 22:46:00 | 000,002,173 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_blue_preloader.swf
[2012.11.12 22:46:00 | 000,028,899 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_branded_large_preloader.swf
[2012.11.12 22:46:00 | 000,017,183 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_branded_small_preloader.swf
[2012.11.12 22:46:00 | 000,002,140 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_gray_grad_preloader.swf
[2012.11.12 22:46:00 | 000,001,845 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp7_white_preloader.swf
[2012.11.12 22:46:00 | 000,002,278 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_azul_preloader.swf
[2012.11.12 22:46:00 | 000,001,899 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_black_outline_preloader.swf
[2012.11.12 22:46:00 | 000,001,863 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_black_preloader.swf
[2012.11.12 22:46:00 | 000,002,227 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_blue_preloader.swf
[2012.11.12 22:46:00 | 000,028,967 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_branded_large_preloader.swf
[2012.11.12 22:46:00 | 000,017,248 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_branded_small_preloader.swf
[2012.11.12 22:46:00 | 000,002,204 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_gray_grad_preloader.swf
[2012.11.12 22:46:00 | 000,001,899 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\fp8_white_preloader.swf
[2012.11.12 22:46:00 | 000,236,529 | ---- | M] () -- \Program Files\TechSmith\Camtasia Studio 8\Media\Studio\Swf\Preloaders\preloaders_src.zip
[2011.07.28 03:34:22 | 002,191,360 | ---- | M] () -- \Program Files\WebcamMax\ShareUploader.exe
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.11 20:18:13 | 000,000,753 | ---- | M] () -- \Users\TescoTaska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\26V3S8HT\AdLoader[1].htm
[2013.01.11 20:18:14 | 000,105,903 | ---- | M] () -- \Users\TescoTaska\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LHFDPIG3\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012.11.19 22:15:42 | 000,000,847 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ac\img\ajax-loader.gif
[2012.11.19 22:15:42 | 000,001,135 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ac\img\loader-icon.png
[2012.11.19 22:15:42 | 000,003,208 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ui\gf\img\loader.gif
[2012.11.19 22:15:42 | 000,001,849 | ---- | M] () -- \Users\TescoTaska\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.05.03 09:14:42 | 000,013,352 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\atomic\framework-tool\img\thumbs_preloader.gif
[2012.05.03 09:14:42 | 000,001,281 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\atomic\functions\fileuploader.css
[2012.06.26 05:29:00 | 000,037,740 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\wordpress\wp-includes\script-loader.php
[2012.01.08 16:01:12 | 000,001,889 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\wordpress\wp-includes\template-loader.php
[2009.08.13 13:45:58 | 000,030,745 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\wp\wp-includes\script-loader.php
[2009.08.13 13:45:56 | 000,002,184 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\wp\wp-includes\template-loader.php
[2012.04.29 10:45:30 | 000,035,936 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\www\wp-includes\script-loader.php
[2012.04.29 10:45:30 | 000,001,893 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\EasyPHP-12.1\www\www\wp-includes\template-loader.php
[2004.12.28 17:40:02 | 000,169,384 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\Wosátko\Hry\Counter-Strike 1.6-OFFLINE\cstrike\models\qloader.mdl
[2003.09.15 13:55:50 | 000,352,548 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\Wosátko\Hry\Counter-Strike 1.6-OFFLINE\valve\models\loader.mdl
[2003.09.15 13:56:04 | 000,012,764 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\Wosátko\Hry\Counter-Strike 1.6-OFFLINE\valve\sound\ambience\loader_hydra1.wav
[2003.09.15 13:56:04 | 000,012,164 | ---- | M] () -- \Users\TescoTaska\Desktop\TescoTaska\Wosátko\Hry\Counter-Strike 1.6-OFFLINE\valve\sound\ambience\loader_step1.wav
[2012.05.03 09:14:42 | 000,040,573 | ---- | M] () -- \Users\TescoTaska\Desktop\Webové stránky\EasyPHP-12.1\www\atomic\functions\fileuploader.js
[2012.06.08 17:52:44 | 000,004,066 | ---- | M] () -- \Users\TescoTaska\Desktop\Webové stránky\EasyPHP-12.1\www\wordpress\wp-includes\js\customize-loader.dev.js
[2012.06.08 17:58:24 | 000,002,609 | ---- | M] () -- \Users\TescoTaska\Desktop\Webové stránky\EasyPHP-12.1\www\wordpress\wp-includes\js\customize-loader.js
[2009.07.14 05:25:34 | 002,202,645 | ---- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2010.11.20 07:28:20 | 000,002,838 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_178685823786d34d.manifest
[2010.11.20 07:38:52 | 000,002,838 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a7f49b3f65af6828820068e5dd598c8\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_d8268e5f2967c990.manifest
[2012.11.30 05:56:23 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009.07.14 09:43:57 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 09:43:57 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009.07.14 09:43:57 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2012.12.27 16:26:47 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2012.12.27 16:26:47 | 000,507,568 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed_winload.exe_75835076
[2012.12.27 16:26:47 | 000,442,920 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll

< End of report >

[vyosek]

Tak v logu je jasne videt crack na windows

Doporucuji si to s kamaradem vyrikat, ale my zde pomoci nemuzeme, plati jista pravidla fora, ktera jsem ja i vy povinnen dodrzovat

Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.