Dobrý den, už asi 2 nebo 3 týdny se mi často stává, že když chci vyhledat něco na googlu, chce to po mě captchu a nebo to nejde vůbec .. mám podezdření že mám v pc nějaký malware. Prosím o radu. Díky
Logfile of random's system information tool 1.09 (written by random/random)
Run by biofarm at 2013-09-28 12:31:38
Microsoft Windows 7 Ultimate
System drive C: has 27 GB (23%) free of 118 GB
Total RAM: 2045 MB (17% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:31:44, on 28.9.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Steam\steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\biofarm.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DeathTaker] C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{F1423970-DCA5-4FFF-98CE-E82CFD210E13}: NameServer = 217.112.162.34 217.112.160.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitRaider Mini-Support Service (BRSptSvc) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9568 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe"
"taskhost.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
HydraDM64.exe -h:65894 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3624.0.1316803635\1605910308" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --gpu-vendor-id=0x1002 --gpu-device-id=0x68bf --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=12.104.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="3624.1.1461092318\1677344472" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.2.1444030627\231129076" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.3.1786519625\852756354" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.4.1253836419\2008691505" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.6.1485023632\84788244" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.8.19660366\748559649" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3624.9.2020130948\1241203563" --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.10.1657807564\1140188775" /prefetch:673131151
"D:\Steam\steam.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.11.1835605200\1099673425" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.14.324556999\1327509159" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3624.16.1779180397\1896903688" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Users\biofarm\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\biofarm\AppData\Roaming\Mozilla\Firefox\Profiles\ral4dnw6.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-24 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-24 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-02-24 11780712]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-08-01 3673696]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-01-12 393216]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"DeathTaker"=C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe [2011-10-24 303616]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-28 642656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-22 17:03:59 ----D---- C:\Users\biofarm\AppData\Roaming\LolClient
2013-09-22 14:57:05 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-22 14:57:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-22 14:57:02 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-22 14:56:37 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-22 14:55:37 ----D---- C:\ProgramData\PMB Files
2013-09-22 14:55:23 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-22 14:54:52 ----D---- C:\Users\biofarm\AppData\Roaming\Riot Games
2013-09-20 20:29:38 ----D---- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
2013-09-17 17:51:36 ----D---- C:\ProgramData\ATI
2013-09-17 17:51:30 ----D---- C:\Program Files (x86)\AMD AVT
2013-09-17 17:45:40 ----D---- C:\AMD
2013-09-15 13:08:54 ----D---- C:\Program Files (x86)\Recover Files
2013-09-13 01:24:04 ----D---- C:\Users\biofarm\AppData\Roaming\Mozilla
2013-09-13 01:23:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-12 16:28:15 ----A---- C:\Windows\Marias.ini
2013-09-12 16:24:12 ----D---- C:\Users\biofarm\AppData\Roaming\YoudaGames
2013-09-09 17:45:44 ----D---- C:\ProgramData\BitRaider
2013-09-09 15:41:17 ----D---- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
2013-09-03 14:41:42 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-09-03 14:41:37 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-03 01:37:37 ----D---- C:\Program Files (x86)\AMD APP
2013-09-03 00:04:20 ----D---- C:\Program Files (x86)\SpeedFan
2013-09-02 22:28:01 ----D---- C:\Program Files\trend micro
2013-09-02 22:28:00 ----D---- C:\rsit
2013-09-02 18:09:18 ----D---- C:\Users\biofarm\AppData\Roaming\InstallShield
2013-09-02 18:05:14 ----D---- C:\Program Files\CCleaner
======List of files/folders modified in the last 1 month======
2013-09-28 12:31:45 ----D---- C:\Windows\Prefetch
2013-09-28 12:31:42 ----D---- C:\Windows\Temp
2013-09-28 12:20:52 ----D---- C:\Windows\System32
2013-09-28 12:20:52 ----D---- C:\Windows\inf
2013-09-28 12:20:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-28 02:32:08 ----D---- C:\Users\biofarm\AppData\Roaming\AIMP3
2013-09-24 00:52:47 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:55:00 ----D---- C:\Windows\system32\config
2013-09-22 14:57:06 ----D---- C:\Windows\SysWOW64
2013-09-22 14:56:48 ----SHD---- C:\System Volume Information
2013-09-22 14:56:40 ----D---- C:\Windows\Tasks
2013-09-22 14:56:39 ----SHD---- C:\Windows\Installer
2013-09-22 14:55:37 ----HD---- C:\ProgramData
2013-09-22 14:55:23 ----RD---- C:\Program Files (x86)
2013-09-21 04:07:38 ----D---- C:\Users\biofarm\AppData\Roaming\OBS
2013-09-20 08:42:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-09-19 00:35:01 ----D---- C:\Users\biofarm\AppData\Roaming\Skype
2013-09-18 17:43:31 ----D---- C:\Windows
2013-09-18 01:01:03 ----D---- C:\Windows\system32\catroot
2013-09-17 17:51:31 ----D---- C:\ProgramData\AMD
2013-09-17 17:50:58 ----D---- C:\Program Files\ATI Technologies
2013-09-17 17:48:57 ----D---- C:\Windows\system32\drivers
2013-09-17 17:48:56 ----D---- C:\Windows\system32\DriverStore
2013-09-11 18:37:17 ----D---- C:\Windows\system32\Tasks
2013-09-09 17:33:44 ----D---- C:\Program Files (x86)\Common Files
2013-09-09 17:33:19 ----RD---- C:\Users
2013-09-09 15:40:27 ----RSD---- C:\Windows\assembly
2013-09-06 13:30:44 ----D---- C:\Windows\system32\FxsTmp
2013-09-06 12:00:31 ----D---- C:\Program Files (x86)\AIMP3
2013-09-03 01:36:13 ----SHD---- C:\$Recycle.Bin
2013-09-02 22:28:01 ----RD---- C:\Program Files
2013-09-02 18:21:46 ----D---- C:\Program Files (x86)\FitLinie
2013-09-02 18:18:21 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-02 17:44:13 ----D---- C:\Windows\LiveKernelReports
2013-08-30 09:47:14 ----A---- C:\Windows\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-03 283064]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2013-05-17 42696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-29 11658752]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-29 581120]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-03-07 40832]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-03-07 65280]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-24 2753512]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2013-05-17 310984]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 BRDriver64;BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [2013-09-10 75048]
S3 cxasbt;cxasbt; \??\D:\AS\avital\cxbt64.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-11-23 300648]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-29 241152]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-28 361984]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-08-17 75064]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20 257416]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BRSptSvc;BitRaider Mini-Support Service; C:\ProgramData\BitRaider\BRSptSvc.exe [2013-09-09 476936]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
problem s vyhledáváním na google
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: problem s vyhledáváním na google
Zdravim 
Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna. 
Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna. "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: problem s vyhledáváním na google
To nevím, PC jsem si koupil od kamaráda už před rokem a půl v tomhle stavu a nic jsem neměnil.
Edit: Myslím, že by to mělo být legalní.
Edit: Myslím, že by to mělo být legalní.
Re: problem s vyhledáváním na google
Proc myslite ze by to melo byt legalni btw, licence na W7 Ultimate se cenou blizi nekam k osmi tisicu, myslim ze by tohle si kamarad kupoval Kamarad Vam musel dat bud instalacni DVD nebo mit na PC tzv COA stitek se seriovym cislem, mate to tam? Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll services.exe svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
- Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: problem s vyhledáváním na google
On skládá počítače známým a přivydělává si tak, takže si myslím, že by to mělo být v pohodě, ale stopro to vědět nemůžu. Je to jen moje domněnka.
jdu udělat tu kontrolu.
jdu udělat tu kontrolu.
Re: problem s vyhledáváním na google
I takove znam, co to skladani jak na bezicim pasu a cpou tam jedny nelegalni windows za druhymi. Ale vsem pak tvrdi jak tam maji tu nejlepsi verzi windows a pritom si za ni vezmou petinu ceny co normalne stoji
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: problem s vyhledáváním na google
OTL logfile created on: 28.9.2013 14:57:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\biofarm\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,54 Gb Available Physical Memory | 26,93% Memory free
4,21 Gb Paging File | 1,49 Gb Available in Paging File | 35,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 115,14 Gb Total Space | 25,91 Gb Free Space | 22,51% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 60,81 Gb Free Space | 19,05% Space Free | Partition Type: NTFS
Drive F: | 537,30 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: BIOFARM-PC | User Name: biofarm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.09.28 14:55:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
PRC - [2013.09.28 02:35:00 | 001,813,928 | ---- | M] (Valve Corporation) -- D:\Steam\Steam.exe
PRC - [2013.09.17 05:21:30 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013.08.30 09:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013.08.17 23:58:54 | 000,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013.07.13 10:38:21 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2012.09.23 21:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.10.24 16:22:50 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
PRC - [2011.09.26 01:57:30 | 000,222,720 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe
PRC - [2011.01.12 22:30:58 | 000,393,216 | ---- | M] (AMD) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
========== Modules (No Company Name) ==========
MOD - [2013.09.28 02:35:00 | 001,121,704 | ---- | M] () -- D:\Steam\bin\chromehtml.dll
MOD - [2013.09.17 05:21:27 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppgooglenaclpluginchrome.dll
MOD - [2013.09.17 05:21:26 | 013,611,984 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
MOD - [2013.09.17 05:21:25 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
MOD - [2013.09.17 05:20:34 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libglesv2.dll
MOD - [2013.09.17 05:20:33 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libegl.dll
MOD - [2013.09.17 05:20:31 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ffmpegsumo.dll
MOD - [2013.09.11 00:20:56 | 020,625,832 | ---- | M] () -- D:\Steam\bin\libcef.dll
MOD - [2013.08.22 00:18:28 | 000,687,104 | ---- | M] () -- D:\Steam\SDL2.dll
MOD - [2013.06.15 01:49:12 | 001,100,800 | ---- | M] () -- D:\Steam\bin\avcodec-53.dll
MOD - [2013.06.15 01:49:12 | 000,192,000 | ---- | M] () -- D:\Steam\bin\avformat-53.dll
MOD - [2013.06.15 01:49:12 | 000,124,416 | ---- | M] () -- D:\Steam\bin\avutil-51.dll
MOD - [2011.10.24 16:22:50 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
MOD - [2011.09.26 01:57:30 | 000,222,720 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe
MOD - [2011.09.05 09:41:36 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\HidDevice.dll
MOD - [2011.01.12 22:30:16 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\ATI Technologies\HydraVision\hydracsy.dll
MOD - [2010.01.30 03:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Services (SafeList) ==========
SRV:64bit: - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013.03.29 03:34:18 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.03.28 22:30:42 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010.04.06 17:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.09.20 08:42:14 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.09.09 17:45:45 | 000,476,936 | ---- | M] (BitRaider, LLC) [On_Demand | Stopped] -- C:\ProgramData\BitRaider\BRSptSvc.exe -- (BRSptSvc)
SRV - [2013.08.17 23:58:54 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013.02.28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.09.23 21:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013.09.03 14:41:42 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.08.30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013.08.30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013.08.30 09:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013.08.30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.08.30 09:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013.08.30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013.08.30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013.08.30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013.05.17 21:27:33 | 000,310,984 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2013.05.17 21:23:01 | 000,042,696 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2013.03.29 04:35:02 | 011,658,752 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.03.29 03:09:44 | 000,581,120 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.02.14 13:41:10 | 000,096,768 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.04.09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV:64bit: - [2011.03.07 11:22:00 | 000,065,280 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011.03.07 11:22:00 | 000,040,832 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2011.01.13 13:58:30 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.01.10 19:16:08 | 000,021,104 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.11.23 12:33:00 | 000,300,648 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2010.02.18 10:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013.09.10 03:15:15 | 000,075,048 | ---- | M] (BitRaider) [File_System | On_Demand | Stopped] -- C:\ProgramData\BitRaider\BRDriver64.sys -- (BRDriver64)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes\{463B841C-C845-4A4C-9B0D-222C36D00679}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.09.11 18:37:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2013.09.13 01:24:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\biofarm\AppData\Roaming\Mozilla\Extensions
[2013.09.13 01:23:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.09.13 01:23:51 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.seznam.cz/?clid=12454
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - Extension: Dokumenty Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DeathTaker] C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000..\Run: [HydraVisionDesktopManager] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F1423970-DCA5-4FFF-98CE-E82CFD210E13}: NameServer = 217.112.162.34 217.112.160.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.11.22 22:36:59 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.03.30 19:13:01 | 000,000,076 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{06c54d96-148e-11e3-87cb-50e549501e3e}\Shell - "" = AutoRun
O33 - MountPoints2\{06c54d96-148e-11e3-87cb-50e549501e3e}\Shell\AutoRun\command - "" = F:\Setup.exe -- [2010.03.30 19:13:01 | 557,833,819 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.09.28 14:55:40 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
[2013.09.25 20:53:11 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Daft Punk Discography
[2013.09.24 22:56:40 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Hugo Toxxx - Bauch Money
[2013.09.22 17:03:59 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.09.22 14:57:05 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013.09.22 14:57:05 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013.09.22 14:57:02 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013.09.22 14:56:37 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013.09.22 14:56:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2013.09.22 14:55:41 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\PMB Files
[2013.09.22 14:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2013.09.22 14:55:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2013.09.22 14:54:52 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.09.20 23:01:08 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\M&BW_CZfix
[2013.09.20 21:10:45 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Mount&Blade Warband Savegames
[2013.09.20 20:29:39 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Mount&Blade Warband
[2013.09.20 20:29:38 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.20 20:17:16 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2013.09.20 20:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2013.09.19 01:18:17 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager 2002 FE
[2013.09.17 17:51:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013.09.17 17:51:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2013.09.17 17:51:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2013.09.17 17:45:40 | 000,000,000 | ---D | C] -- C:\AMD
[2013.09.15 14:38:09 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\mama
[2013.09.15 13:08:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recover Files
[2013.09.15 13:08:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Recover Files
[2013.09.14 19:16:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\libko_all_in_1
[2013.09.14 19:16:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Lamicka18_250618662
[2013.09.14 19:14:48 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\fotky ze zamčených alb CZ (teen sex amateur)_1
[2013.09.13 13:32:55 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Český překlad WoW
[2013.09.13 13:32:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Český překlad WoW
[2013.09.13 01:24:04 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Mozilla
[2013.09.13 01:24:04 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\Mozilla
[2013.09.13 01:23:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.09.12 17:16:18 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\MAAT - Ze tmy (2013)
[2013.09.12 17:10:58 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\NHL09
[2013.09.12 16:24:12 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
[2013.09.12 16:24:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Governor of Poker 2 Premium Edition
[2013.09.11 19:47:14 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\MOBY DICK
[2013.09.10 03:15:29 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\SWTOR
[2013.09.10 03:15:28 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\HeroBlade Logs
[2013.09.09 17:45:44 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BitRaider
[2013.09.09 17:45:44 | 000,000,000 | ---D | C] -- C:\ProgramData\BitRaider
[2013.09.09 17:45:27 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\SWTORPerf
[2013.09.09 17:33:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
[2013.09.09 17:33:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare
[2013.09.09 17:07:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Red Alert 3 Uprising
[2013.09.09 15:41:17 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.06 12:00:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
[2013.09.03 14:52:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
[2013.09.03 14:41:42 | 000,283,064 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.09.03 14:41:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013.09.03 01:37:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2013.09.03 00:04:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013.09.03 00:04:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2013.09.02 22:28:01 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.09.02 22:28:00 | 000,000,000 | ---D | C] -- C:\rsit
[2013.09.02 18:23:30 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\skola
[2013.09.02 18:09:18 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\InstallShield
[2013.09.02 18:05:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013.09.02 18:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.09.02 17:02:21 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\hry
[2013.08.31 17:54:16 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\Electronic Arts
[2013.08.31 17:53:30 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Electronic Arts
[2013.08.31 17:52:11 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Electrontic Arts
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.09.28 15:00:50 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.09.28 14:55:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
[2013.09.28 14:43:01 | 000,000,954 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.09.28 14:42:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.09.28 12:23:57 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.09.28 12:23:57 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.09.28 12:20:52 | 001,590,786 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.09.28 12:20:52 | 000,663,722 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.09.28 12:20:52 | 000,656,430 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.09.28 12:20:52 | 000,141,870 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.09.28 12:20:52 | 000,122,242 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.09.28 12:16:30 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.09.28 12:16:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.09.28 12:16:15 | 1608,441,856 | -HS- | M] () -- C:\hiberfil.sys
[2013.09.27 14:57:33 | 000,637,223 | ---- | M] () -- C:\Users\biofarm\Desktop\deda.xps
[2013.09.26 23:35:32 | 118,216,654 | ---- | M] () -- C:\Users\biofarm\Desktop\MOBY DICK.rar
[2013.09.22 14:56:34 | 000,001,503 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.09.20 21:09:04 | 000,000,655 | ---- | M] () -- C:\Users\biofarm\Desktop\Mount&Blade Warband.lnk
[2013.09.20 08:42:13 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013.09.20 08:42:13 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.09.19 01:18:18 | 000,000,811 | ---- | M] () -- C:\Users\biofarm\Desktop\Czech Soccer Manager.lnk
[2013.09.15 13:08:55 | 000,001,071 | ---- | M] () -- C:\Users\biofarm\Desktop\Recover Files.lnk
[2013.09.13 13:32:55 | 000,000,509 | ---- | M] () -- C:\Users\biofarm\Desktop\České WoW.lnk
[2013.09.12 16:28:15 | 000,000,433 | ---- | M] () -- C:\Windows\Marias.ini
[2013.09.12 16:24:01 | 000,000,716 | ---- | M] () -- C:\Users\Public\Desktop\Governor of Poker 2 Premium Edition.lnk
[2013.09.11 18:37:14 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013.09.09 17:33:50 | 000,000,732 | ---- | M] () -- C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
[2013.09.09 15:15:45 | 000,019,228 | ---- | M] () -- C:\Users\biofarm\Desktop\doklad.png
[2013.09.08 21:07:52 | 000,000,201 | ---- | M] () -- C:\Users\biofarm\Desktop\Command and Conquer Red Alert 3 - Uprising.url
[2013.09.06 12:00:42 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2013.09.06 10:16:56 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.09.03 14:52:41 | 000,000,810 | ---- | M] () -- C:\Users\Public\Desktop\Risen 2 Dark Waters.lnk
[2013.09.03 14:42:17 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2013.09.03 14:41:42 | 000,283,064 | ---- | M] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.09.03 00:04:21 | 000,001,011 | ---- | M] () -- C:\Users\biofarm\Desktop\SpeedFan.lnk
[2013.09.03 00:04:20 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2013.08.30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013.08.30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013.08.30 09:48:10 | 000,204,880 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013.08.30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013.08.30 09:48:10 | 000,065,336 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013.08.30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013.08.30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013.08.30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013.08.30 09:47:40 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.08.30 09:47:14 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.09.28 15:00:50 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.09.27 14:57:32 | 000,637,223 | ---- | C] () -- C:\Users\biofarm\Desktop\deda.xps
[2013.09.26 23:35:12 | 118,216,654 | ---- | C] () -- C:\Users\biofarm\Desktop\MOBY DICK.rar
[2013.09.22 14:56:34 | 000,001,503 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.09.20 20:17:16 | 000,000,655 | ---- | C] () -- C:\Users\biofarm\Desktop\Mount&Blade Warband.lnk
[2013.09.19 01:18:18 | 000,000,811 | ---- | C] () -- C:\Users\biofarm\Desktop\Czech Soccer Manager.lnk
[2013.09.15 13:08:55 | 000,001,071 | ---- | C] () -- C:\Users\biofarm\Desktop\Recover Files.lnk
[2013.09.13 13:32:55 | 000,000,509 | ---- | C] () -- C:\Users\biofarm\Desktop\České WoW.lnk
[2013.09.12 16:28:15 | 000,000,433 | ---- | C] () -- C:\Windows\Marias.ini
[2013.09.12 16:24:01 | 000,000,716 | ---- | C] () -- C:\Users\Public\Desktop\Governor of Poker 2 Premium Edition.lnk
[2013.09.12 16:06:01 | 009,938,407 | ---- | C] () -- C:\Users\biofarm\Desktop\3600181230291776.mp3
[2013.09.12 16:05:56 | 009,447,269 | ---- | C] () -- C:\Users\biofarm\Desktop\01 - Kate.mp3
[2013.09.12 16:05:44 | 000,464,396 | ---- | C] () -- C:\Users\biofarm\Desktop\Windows_Music.mp3
[2013.09.12 16:05:42 | 007,175,191 | ---- | C] () -- C:\Users\biofarm\Desktop\Michael Burian - Vltava (Original Mix)-www.MusicMania.cz.mp3
[2013.09.09 17:33:50 | 000,000,732 | ---- | C] () -- C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
[2013.09.09 15:15:45 | 000,019,228 | ---- | C] () -- C:\Users\biofarm\Desktop\doklad.png
[2013.09.08 21:07:52 | 000,000,201 | ---- | C] () -- C:\Users\biofarm\Desktop\Command and Conquer Red Alert 3 - Uprising.url
[2013.09.06 12:00:41 | 000,000,909 | ---- | C] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2013.09.03 14:52:41 | 000,000,810 | ---- | C] () -- C:\Users\Public\Desktop\Risen 2 Dark Waters.lnk
[2013.09.03 14:42:17 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2013.09.03 00:04:21 | 000,001,011 | ---- | C] () -- C:\Users\biofarm\Desktop\SpeedFan.lnk
[2013.09.02 18:05:17 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.08.17 23:58:54 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe
[2013.04.22 21:27:53 | 001,549,420 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.04.13 13:44:26 | 000,000,190 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2013.04.04 18:55:31 | 001,208,831 | ---- | C] () -- C:\Windows\unins000.exe
[2013.04.04 18:55:31 | 000,035,512 | ---- | C] () -- C:\Windows\unins000.dat
[2013.03.29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.03.29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.03.18 21:01:16 | 000,005,120 | ---- | C] () -- C:\Users\biofarm\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.03.18 18:10:44 | 000,218,496 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013.03.18 18:10:43 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013.03.14 02:17:43 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2013.03.05 21:19:35 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.03.05 21:08:43 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2012.11.27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.08.06 19:26:52 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.08.06 19:25:57 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.08.06 19:24:28 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013.09.28 02:32:08 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\AIMP3
[2013.03.13 22:56:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\DAEMON Tools Lite
[2013.03.08 03:52:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Dev-Cpp
[2013.07.08 19:04:32 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\GHISLER
[2013.03.07 00:49:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\HD Tune Pro
[2013.04.04 18:55:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\KYE 9Key
[2013.04.02 22:25:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Leadertech
[2013.09.22 17:03:59 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.09.20 20:33:17 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.21 04:07:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\OBS
[2013.03.18 18:10:42 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\PunkBuster
[2013.09.09 17:05:23 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.22 14:55:10 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.05.21 13:23:22 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Seznam.cz
[2013.04.01 22:32:48 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Sony
[2013.03.28 02:34:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\systweak
[2013.08.06 01:18:14 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\wargaming.net
[2013.09.12 16:24:13 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,618 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.03.05 21:23:19 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.03.05 21:23:20 | 000,000,954 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.03.19 12:53:49 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[17 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.03.27 21:55:35 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Adobe
[2013.09.28 02:32:08 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\AIMP3
[2013.03.05 21:19:50 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\ATI
[2013.03.13 22:56:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\DAEMON Tools Lite
[2013.03.08 03:52:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Dev-Cpp
[2013.07.08 19:04:32 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\GHISLER
[2013.03.07 00:49:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\HD Tune Pro
[2013.03.05 20:59:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Identities
[2013.09.02 18:09:18 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\InstallShield
[2013.04.04 18:55:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\KYE 9Key
[2013.04.02 22:25:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Leadertech
[2013.09.22 17:03:59 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.03.08 04:02:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Macromedia
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Media Center Programs
[2013.08.06 13:39:18 | 000,000,000 | --SD | M] -- C:\Users\biofarm\AppData\Roaming\Microsoft
[2013.09.20 20:33:17 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.13 01:24:09 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mozilla
[2013.09.21 04:07:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\OBS
[2013.03.18 18:10:42 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\PunkBuster
[2013.09.09 17:05:23 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.22 14:55:10 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.04.02 17:23:25 | 000,000,000 | RH-D | M] -- C:\Users\biofarm\AppData\Roaming\SecuROM
[2013.05.21 13:23:22 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Seznam.cz
[2013.09.19 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Skype
[2013.04.01 22:32:48 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Sony
[2013.03.28 02:34:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\systweak
[2013.06.05 01:29:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\vlc
[2013.08.06 01:18:14 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\wargaming.net
[2013.03.11 03:34:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\WinRAR
[2013.09.12 16:24:13 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
< %APPDATA%\*.exe /s >
[2013.09.06 12:00:15 | 007,551,384 | ---- | M] (AIMP DevTeam) -- C:\Users\biofarm\AppData\Roaming\AIMP3\UpdateInstaller.exe
[2013.08.05 18:58:30 | 000,119,296 | ---- | M] (obsproject.com) -- C:\Users\biofarm\AppData\Roaming\OBS\updates\updater.exe
[2011.02.24 17:07:45 | 000,835,440 | R--- | M] () -- C:\Users\biofarm\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2013.09.28 14:42:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.09.28 12:16:30 | 000,000,950 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.09.28 14:43:01 | 000,000,954 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2013.08.01 15:13:14 | 003,673,696 | ---- | M] (Disc Soft Ltd)
"HydraVisionDesktopManager" = "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" -- [2011.01.12 22:30:58 | 000,393,216 | ---- | M] (AMD)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013.08.14 19:55:19 | 000,276,376 | ---- | M] (Mozilla Corporation) MD5=B4CF3FB7E9B8EA69757541DCE6CA20ED -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.07.14 03:17:29 | 000,673,048 | ---- | M] (Microsoft Corporation) MD5=2C32E3E596CFE660353753EABEFB0540 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013.09.17 05:21:30 | 000,829,392 | ---- | M] (Google Inc.) MD5=E7148BB584830E51AFD414CE9AEAE74C -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.09.28 15:00:50 | 000,000,512 | ---- | M] () MD5=16749C141EBC3326D5395EB13C7BE439 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013.05.07 18:10:15 | 000,032,959 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\starcraft-2-wings-of-liberty-crack-part4-rar[1].htm
[2013.05.07 15:43:55 | 000,032,782 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\starcraft-2-wings-of-liberty-crack-part2-rar[1].htm
[2013.09.06 12:12:37 | 2097,005,025 | ---- | M] () -- \Users\biofarm\Downloads\Mount-and-blade-Warband-+-(Patch,-Mod-Floris,-Crack).rar
[2013.09.05 15:45:44 | 002,013,418 | ---- | M] () -- \Users\biofarm\Downloads\Igor---Mazafaka-Mixtape\Igor - Mazafaka\26-Crack.mp3
[2011.10.05 19:24:06 | 008,631,073 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-Acapellas (2008) 320kbps\Eminem-Jimmy_Crack_Corn_Cashis_Vocal_MixAcapella.mp3
[2010.01.12 07:27:16 | 005,557,145 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-American Nightmare (2010) 192kbps\14. Jimmy Crack Corn (feat. 50 Cent)-MF.mp3
[2009.05.19 19:13:00 | 006,525,265 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-Relapse (2009) 160-256kbps\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.mp3
< *keygen* /s >
[2010.06.22 22:29:42 | 002,257,920 | ---- | M] () -- \Users\biofarm\Pictures\Sony-Vegas-Pro-11.0-Full-Verzion-+-Sk-Cz-návod\Sony Vegas Pro 11.0\Keygen\Keygen.exe
< *loader* /s >
[2013.05.09 18:45:08 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2010.03.24 21:12:34 | 000,249,680 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 21:12:34 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 03:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2011.02.24 11:11:20 | 000,234,104 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ubiorbitapi_r2_loader.dll
[2010.03.24 21:35:48 | 000,370,512 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 21:35:48 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.06.09 20:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.08.12 08:25:00 | 000,000,445 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HU844A4\fancybox.myloader.js[1].php
[2013.08.31 09:18:58 | 000,004,178 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\ajax-loader[1].gif
[2013.09.27 14:43:06 | 000,402,676 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\jsloader-1b446b6079e4[1].js
[2013.09.22 18:57:46 | 000,005,708 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\queryLoader[1].js
[2013.09.13 01:20:10 | 000,003,061 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\rmsloaderdelayeddiv[1].js
[2013.08.04 15:18:46 | 000,000,445 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VPY9LGSY\fancybox.myloader.js[1].php
[2013.09.27 14:43:13 | 000,151,509 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VPY9LGSY\jsloader-63507cacbc40[1].js
[2013.09.27 14:43:13 | 000,050,513 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\cssloader-5286d7d4fde8[1].css
[2013.09.27 14:43:06 | 000,109,071 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\cssloader-65670978b5a5[1].css
[2013.09.22 18:57:21 | 000,000,374 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\queryLoader[1].css
[2012.12.03 17:39:16 | 006,872,918 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1971 Guitar Boogie (vith Eric Clapton & Jeff Beck) @320\05 - Freight Loader (Eric Clapton & Jimmy Page).mp3
[2012.12.08 11:03:57 | 006,960,487 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1985 White Boy Blues Vol 1 (with Jeff Beck, John Mayall & Eric Clapton)(320)\06 - Freight Loader.Mp3
[2012.12.03 16:02:16 | 006,907,459 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1987 Guitar Boogie (Eric Clapton, Jeff Beck & Jimmy Page) @320\05. Freight Loader.mp3
[2012.12.03 18:20:28 | 006,787,091 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\2007 Hip Young Guitar Slinger (and his heavy Friends) @320\CD2\15. Freight Loader.mp3
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\biofarm\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,54 Gb Available Physical Memory | 26,93% Memory free
4,21 Gb Paging File | 1,49 Gb Available in Paging File | 35,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 115,14 Gb Total Space | 25,91 Gb Free Space | 22,51% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 60,81 Gb Free Space | 19,05% Space Free | Partition Type: NTFS
Drive F: | 537,30 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: BIOFARM-PC | User Name: biofarm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.09.28 14:55:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
PRC - [2013.09.28 02:35:00 | 001,813,928 | ---- | M] (Valve Corporation) -- D:\Steam\Steam.exe
PRC - [2013.09.17 05:21:30 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013.08.30 09:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013.08.17 23:58:54 | 000,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013.07.13 10:38:21 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2012.09.23 21:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.10.24 16:22:50 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
PRC - [2011.09.26 01:57:30 | 000,222,720 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe
PRC - [2011.01.12 22:30:58 | 000,393,216 | ---- | M] (AMD) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
========== Modules (No Company Name) ==========
MOD - [2013.09.28 02:35:00 | 001,121,704 | ---- | M] () -- D:\Steam\bin\chromehtml.dll
MOD - [2013.09.17 05:21:27 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppgooglenaclpluginchrome.dll
MOD - [2013.09.17 05:21:26 | 013,611,984 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
MOD - [2013.09.17 05:21:25 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
MOD - [2013.09.17 05:20:34 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libglesv2.dll
MOD - [2013.09.17 05:20:33 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libegl.dll
MOD - [2013.09.17 05:20:31 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ffmpegsumo.dll
MOD - [2013.09.11 00:20:56 | 020,625,832 | ---- | M] () -- D:\Steam\bin\libcef.dll
MOD - [2013.08.22 00:18:28 | 000,687,104 | ---- | M] () -- D:\Steam\SDL2.dll
MOD - [2013.06.15 01:49:12 | 001,100,800 | ---- | M] () -- D:\Steam\bin\avcodec-53.dll
MOD - [2013.06.15 01:49:12 | 000,192,000 | ---- | M] () -- D:\Steam\bin\avformat-53.dll
MOD - [2013.06.15 01:49:12 | 000,124,416 | ---- | M] () -- D:\Steam\bin\avutil-51.dll
MOD - [2011.10.24 16:22:50 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
MOD - [2011.09.26 01:57:30 | 000,222,720 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\trayicon.exe
MOD - [2011.09.05 09:41:36 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Genius\DeathTaker\HidDevice.dll
MOD - [2011.01.12 22:30:16 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\ATI Technologies\HydraVision\hydracsy.dll
MOD - [2010.01.30 03:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Services (SafeList) ==========
SRV:64bit: - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013.03.29 03:34:18 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.03.28 22:30:42 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010.04.06 17:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.09.20 08:42:14 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.09.09 17:45:45 | 000,476,936 | ---- | M] (BitRaider, LLC) [On_Demand | Stopped] -- C:\ProgramData\BitRaider\BRSptSvc.exe -- (BRSptSvc)
SRV - [2013.08.17 23:58:54 | 000,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013.02.28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.09.23 21:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013.09.03 14:41:42 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.08.30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013.08.30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013.08.30 09:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013.08.30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.08.30 09:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013.08.30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013.08.30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013.08.30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013.05.17 21:27:33 | 000,310,984 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2013.05.17 21:23:01 | 000,042,696 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2013.03.29 04:35:02 | 011,658,752 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.03.29 03:09:44 | 000,581,120 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.02.14 13:41:10 | 000,096,768 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.04.09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV:64bit: - [2011.03.07 11:22:00 | 000,065,280 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011.03.07 11:22:00 | 000,040,832 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2011.01.13 13:58:30 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.01.10 19:16:08 | 000,021,104 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.11.23 12:33:00 | 000,300,648 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2010.02.18 10:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013.09.10 03:15:15 | 000,075,048 | ---- | M] (BitRaider) [File_System | On_Demand | Stopped] -- C:\ProgramData\BitRaider\BRDriver64.sys -- (BRDriver64)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..\SearchScopes\{463B841C-C845-4A4C-9B0D-222C36D00679}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
IE - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.09.11 18:37:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2013.09.13 01:24:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\biofarm\AppData\Roaming\Mozilla\Extensions
[2013.09.13 01:23:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.09.13 01:23:51 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.seznam.cz/?clid=12454
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - Extension: Dokumenty Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\biofarm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DeathTaker] C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000..\Run: [HydraVisionDesktopManager] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-1677894996-3600867410-1148025045-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F1423970-DCA5-4FFF-98CE-E82CFD210E13}: NameServer = 217.112.162.34 217.112.160.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.11.22 22:36:59 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.03.30 19:13:01 | 000,000,076 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{06c54d96-148e-11e3-87cb-50e549501e3e}\Shell - "" = AutoRun
O33 - MountPoints2\{06c54d96-148e-11e3-87cb-50e549501e3e}\Shell\AutoRun\command - "" = F:\Setup.exe -- [2010.03.30 19:13:01 | 557,833,819 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.09.28 14:55:40 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
[2013.09.25 20:53:11 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Daft Punk Discography
[2013.09.24 22:56:40 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Hugo Toxxx - Bauch Money
[2013.09.22 17:03:59 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.09.22 14:57:05 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013.09.22 14:57:05 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013.09.22 14:57:02 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013.09.22 14:56:37 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013.09.22 14:56:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2013.09.22 14:55:41 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\PMB Files
[2013.09.22 14:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2013.09.22 14:55:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2013.09.22 14:54:52 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.09.20 23:01:08 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\M&BW_CZfix
[2013.09.20 21:10:45 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Mount&Blade Warband Savegames
[2013.09.20 20:29:39 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Mount&Blade Warband
[2013.09.20 20:29:38 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.20 20:17:16 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2013.09.20 20:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2013.09.19 01:18:17 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager 2002 FE
[2013.09.17 17:51:36 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013.09.17 17:51:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2013.09.17 17:51:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2013.09.17 17:45:40 | 000,000,000 | ---D | C] -- C:\AMD
[2013.09.15 14:38:09 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\mama
[2013.09.15 13:08:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recover Files
[2013.09.15 13:08:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Recover Files
[2013.09.14 19:16:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\libko_all_in_1
[2013.09.14 19:16:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\Lamicka18_250618662
[2013.09.14 19:14:48 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\fotky ze zamčených alb CZ (teen sex amateur)_1
[2013.09.13 13:32:55 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Český překlad WoW
[2013.09.13 13:32:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Český překlad WoW
[2013.09.13 01:24:04 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Mozilla
[2013.09.13 01:24:04 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\Mozilla
[2013.09.13 01:23:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.09.12 17:16:18 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\MAAT - Ze tmy (2013)
[2013.09.12 17:10:58 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\NHL09
[2013.09.12 16:24:12 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
[2013.09.12 16:24:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Governor of Poker 2 Premium Edition
[2013.09.11 19:47:14 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\MOBY DICK
[2013.09.10 03:15:29 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\SWTOR
[2013.09.10 03:15:28 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\HeroBlade Logs
[2013.09.09 17:45:44 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BitRaider
[2013.09.09 17:45:44 | 000,000,000 | ---D | C] -- C:\ProgramData\BitRaider
[2013.09.09 17:45:27 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\SWTORPerf
[2013.09.09 17:33:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
[2013.09.09 17:33:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare
[2013.09.09 17:07:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Red Alert 3 Uprising
[2013.09.09 15:41:17 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.06 12:00:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
[2013.09.03 14:52:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
[2013.09.03 14:41:42 | 000,283,064 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.09.03 14:41:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013.09.03 01:37:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2013.09.03 00:04:20 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2013.09.03 00:04:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2013.09.02 22:28:01 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.09.02 22:28:00 | 000,000,000 | ---D | C] -- C:\rsit
[2013.09.02 18:23:30 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\skola
[2013.09.02 18:09:18 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Roaming\InstallShield
[2013.09.02 18:05:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013.09.02 18:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.09.02 17:02:21 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Desktop\hry
[2013.08.31 17:54:16 | 000,000,000 | ---D | C] -- C:\Users\biofarm\AppData\Local\Electronic Arts
[2013.08.31 17:53:30 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Electronic Arts
[2013.08.31 17:52:11 | 000,000,000 | ---D | C] -- C:\Users\biofarm\Documents\Electrontic Arts
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.09.28 15:00:50 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.09.28 14:55:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\biofarm\Desktop\OTL.exe
[2013.09.28 14:43:01 | 000,000,954 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.09.28 14:42:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.09.28 12:23:57 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.09.28 12:23:57 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.09.28 12:20:52 | 001,590,786 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.09.28 12:20:52 | 000,663,722 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.09.28 12:20:52 | 000,656,430 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.09.28 12:20:52 | 000,141,870 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.09.28 12:20:52 | 000,122,242 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.09.28 12:16:30 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.09.28 12:16:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.09.28 12:16:15 | 1608,441,856 | -HS- | M] () -- C:\hiberfil.sys
[2013.09.27 14:57:33 | 000,637,223 | ---- | M] () -- C:\Users\biofarm\Desktop\deda.xps
[2013.09.26 23:35:32 | 118,216,654 | ---- | M] () -- C:\Users\biofarm\Desktop\MOBY DICK.rar
[2013.09.22 14:56:34 | 000,001,503 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.09.20 21:09:04 | 000,000,655 | ---- | M] () -- C:\Users\biofarm\Desktop\Mount&Blade Warband.lnk
[2013.09.20 08:42:13 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013.09.20 08:42:13 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.09.19 01:18:18 | 000,000,811 | ---- | M] () -- C:\Users\biofarm\Desktop\Czech Soccer Manager.lnk
[2013.09.15 13:08:55 | 000,001,071 | ---- | M] () -- C:\Users\biofarm\Desktop\Recover Files.lnk
[2013.09.13 13:32:55 | 000,000,509 | ---- | M] () -- C:\Users\biofarm\Desktop\České WoW.lnk
[2013.09.12 16:28:15 | 000,000,433 | ---- | M] () -- C:\Windows\Marias.ini
[2013.09.12 16:24:01 | 000,000,716 | ---- | M] () -- C:\Users\Public\Desktop\Governor of Poker 2 Premium Edition.lnk
[2013.09.11 18:37:14 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013.09.09 17:33:50 | 000,000,732 | ---- | M] () -- C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
[2013.09.09 15:15:45 | 000,019,228 | ---- | M] () -- C:\Users\biofarm\Desktop\doklad.png
[2013.09.08 21:07:52 | 000,000,201 | ---- | M] () -- C:\Users\biofarm\Desktop\Command and Conquer Red Alert 3 - Uprising.url
[2013.09.06 12:00:42 | 000,000,909 | ---- | M] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2013.09.06 10:16:56 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.09.03 14:52:41 | 000,000,810 | ---- | M] () -- C:\Users\Public\Desktop\Risen 2 Dark Waters.lnk
[2013.09.03 14:42:17 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2013.09.03 14:41:42 | 000,283,064 | ---- | M] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.09.03 00:04:21 | 000,001,011 | ---- | M] () -- C:\Users\biofarm\Desktop\SpeedFan.lnk
[2013.09.03 00:04:20 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2013.08.30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013.08.30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013.08.30 09:48:10 | 000,204,880 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013.08.30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013.08.30 09:48:10 | 000,065,336 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013.08.30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013.08.30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013.08.30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013.08.30 09:47:40 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.08.30 09:47:14 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.09.28 15:00:50 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.09.27 14:57:32 | 000,637,223 | ---- | C] () -- C:\Users\biofarm\Desktop\deda.xps
[2013.09.26 23:35:12 | 118,216,654 | ---- | C] () -- C:\Users\biofarm\Desktop\MOBY DICK.rar
[2013.09.22 14:56:34 | 000,001,503 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.09.20 20:17:16 | 000,000,655 | ---- | C] () -- C:\Users\biofarm\Desktop\Mount&Blade Warband.lnk
[2013.09.19 01:18:18 | 000,000,811 | ---- | C] () -- C:\Users\biofarm\Desktop\Czech Soccer Manager.lnk
[2013.09.15 13:08:55 | 000,001,071 | ---- | C] () -- C:\Users\biofarm\Desktop\Recover Files.lnk
[2013.09.13 13:32:55 | 000,000,509 | ---- | C] () -- C:\Users\biofarm\Desktop\České WoW.lnk
[2013.09.12 16:28:15 | 000,000,433 | ---- | C] () -- C:\Windows\Marias.ini
[2013.09.12 16:24:01 | 000,000,716 | ---- | C] () -- C:\Users\Public\Desktop\Governor of Poker 2 Premium Edition.lnk
[2013.09.12 16:06:01 | 009,938,407 | ---- | C] () -- C:\Users\biofarm\Desktop\3600181230291776.mp3
[2013.09.12 16:05:56 | 009,447,269 | ---- | C] () -- C:\Users\biofarm\Desktop\01 - Kate.mp3
[2013.09.12 16:05:44 | 000,464,396 | ---- | C] () -- C:\Users\biofarm\Desktop\Windows_Music.mp3
[2013.09.12 16:05:42 | 007,175,191 | ---- | C] () -- C:\Users\biofarm\Desktop\Michael Burian - Vltava (Original Mix)-www.MusicMania.cz.mp3
[2013.09.09 17:33:50 | 000,000,732 | ---- | C] () -- C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
[2013.09.09 15:15:45 | 000,019,228 | ---- | C] () -- C:\Users\biofarm\Desktop\doklad.png
[2013.09.08 21:07:52 | 000,000,201 | ---- | C] () -- C:\Users\biofarm\Desktop\Command and Conquer Red Alert 3 - Uprising.url
[2013.09.06 12:00:41 | 000,000,909 | ---- | C] () -- C:\Users\Public\Desktop\AIMP3.lnk
[2013.09.03 14:52:41 | 000,000,810 | ---- | C] () -- C:\Users\Public\Desktop\Risen 2 Dark Waters.lnk
[2013.09.03 14:42:17 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2013.09.03 00:04:21 | 000,001,011 | ---- | C] () -- C:\Users\biofarm\Desktop\SpeedFan.lnk
[2013.09.02 18:05:17 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.08.17 23:58:54 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe
[2013.04.22 21:27:53 | 001,549,420 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.04.13 13:44:26 | 000,000,190 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2013.04.04 18:55:31 | 001,208,831 | ---- | C] () -- C:\Windows\unins000.exe
[2013.04.04 18:55:31 | 000,035,512 | ---- | C] () -- C:\Windows\unins000.dat
[2013.03.29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.03.29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.03.18 21:01:16 | 000,005,120 | ---- | C] () -- C:\Users\biofarm\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.03.18 18:10:44 | 000,218,496 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013.03.18 18:10:43 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013.03.14 02:17:43 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2013.03.05 21:19:35 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.03.05 21:08:43 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2012.11.27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.08.06 19:26:52 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.08.06 19:25:57 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.08.06 19:24:28 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013.09.28 02:32:08 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\AIMP3
[2013.03.13 22:56:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\DAEMON Tools Lite
[2013.03.08 03:52:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Dev-Cpp
[2013.07.08 19:04:32 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\GHISLER
[2013.03.07 00:49:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\HD Tune Pro
[2013.04.04 18:55:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\KYE 9Key
[2013.04.02 22:25:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Leadertech
[2013.09.22 17:03:59 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.09.20 20:33:17 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.21 04:07:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\OBS
[2013.03.18 18:10:42 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\PunkBuster
[2013.09.09 17:05:23 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.22 14:55:10 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.05.21 13:23:22 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Seznam.cz
[2013.04.01 22:32:48 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Sony
[2013.03.28 02:34:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\systweak
[2013.08.06 01:18:14 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\wargaming.net
[2013.09.12 16:24:13 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,618 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.03.05 21:23:19 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.03.05 21:23:20 | 000,000,954 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.03.19 12:53:49 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[17 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.03.27 21:55:35 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Adobe
[2013.09.28 02:32:08 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\AIMP3
[2013.03.05 21:19:50 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\ATI
[2013.03.13 22:56:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\DAEMON Tools Lite
[2013.03.08 03:52:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Dev-Cpp
[2013.07.08 19:04:32 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\GHISLER
[2013.03.07 00:49:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\HD Tune Pro
[2013.03.05 20:59:04 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Identities
[2013.09.02 18:09:18 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\InstallShield
[2013.04.04 18:55:37 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\KYE 9Key
[2013.04.02 22:25:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Leadertech
[2013.09.22 17:03:59 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\LolClient
[2013.03.08 04:02:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Macromedia
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Media Center Programs
[2013.08.06 13:39:18 | 000,000,000 | --SD | M] -- C:\Users\biofarm\AppData\Roaming\Microsoft
[2013.09.20 20:33:17 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mount&Blade Warband
[2013.09.13 01:24:09 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Mozilla
[2013.09.21 04:07:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\OBS
[2013.03.18 18:10:42 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\PunkBuster
[2013.09.09 17:05:23 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Red Alert 3 Uprising
[2013.09.22 14:55:10 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Riot Games
[2013.04.02 17:23:25 | 000,000,000 | RH-D | M] -- C:\Users\biofarm\AppData\Roaming\SecuROM
[2013.05.21 13:23:22 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Seznam.cz
[2013.09.19 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Skype
[2013.04.01 22:32:48 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\Sony
[2013.03.28 02:34:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\systweak
[2013.06.05 01:29:38 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\vlc
[2013.08.06 01:18:14 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\wargaming.net
[2013.03.11 03:34:20 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\WinRAR
[2013.09.12 16:24:13 | 000,000,000 | ---D | M] -- C:\Users\biofarm\AppData\Roaming\YoudaGames
< %APPDATA%\*.exe /s >
[2013.09.06 12:00:15 | 007,551,384 | ---- | M] (AIMP DevTeam) -- C:\Users\biofarm\AppData\Roaming\AIMP3\UpdateInstaller.exe
[2013.08.05 18:58:30 | 000,119,296 | ---- | M] (obsproject.com) -- C:\Users\biofarm\AppData\Roaming\OBS\updates\updater.exe
[2011.02.24 17:07:45 | 000,835,440 | R--- | M] () -- C:\Users\biofarm\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2013.09.28 14:42:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.09.28 12:16:30 | 000,000,950 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.09.28 14:43:01 | 000,000,954 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2013.08.01 15:13:14 | 003,673,696 | ---- | M] (Disc Soft Ltd)
"HydraVisionDesktopManager" = "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" -- [2011.01.12 22:30:58 | 000,393,216 | ---- | M] (AMD)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013.08.14 19:55:19 | 000,276,376 | ---- | M] (Mozilla Corporation) MD5=B4CF3FB7E9B8EA69757541DCE6CA20ED -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.07.14 03:17:29 | 000,673,048 | ---- | M] (Microsoft Corporation) MD5=2C32E3E596CFE660353753EABEFB0540 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013.09.17 05:21:30 | 000,829,392 | ---- | M] (Google Inc.) MD5=E7148BB584830E51AFD414CE9AEAE74C -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.09.28 15:00:50 | 000,000,512 | ---- | M] () MD5=16749C141EBC3326D5395EB13C7BE439 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013.05.07 18:10:15 | 000,032,959 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\starcraft-2-wings-of-liberty-crack-part4-rar[1].htm
[2013.05.07 15:43:55 | 000,032,782 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\starcraft-2-wings-of-liberty-crack-part2-rar[1].htm
[2013.09.06 12:12:37 | 2097,005,025 | ---- | M] () -- \Users\biofarm\Downloads\Mount-and-blade-Warband-+-(Patch,-Mod-Floris,-Crack).rar
[2013.09.05 15:45:44 | 002,013,418 | ---- | M] () -- \Users\biofarm\Downloads\Igor---Mazafaka-Mixtape\Igor - Mazafaka\26-Crack.mp3
[2011.10.05 19:24:06 | 008,631,073 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-Acapellas (2008) 320kbps\Eminem-Jimmy_Crack_Corn_Cashis_Vocal_MixAcapella.mp3
[2010.01.12 07:27:16 | 005,557,145 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-American Nightmare (2010) 192kbps\14. Jimmy Crack Corn (feat. 50 Cent)-MF.mp3
[2009.05.19 19:13:00 | 006,525,265 | ---- | M] () -- \Users\biofarm\Music\RAP\eminem\Eminem-Relapse (2009) 160-256kbps\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.mp3
< *keygen* /s >
[2010.06.22 22:29:42 | 002,257,920 | ---- | M] () -- \Users\biofarm\Pictures\Sony-Vegas-Pro-11.0-Full-Verzion-+-Sk-Cz-návod\Sony Vegas Pro 11.0\Keygen\Keygen.exe
< *loader* /s >
[2013.05.09 18:45:08 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2010.03.24 21:12:34 | 000,249,680 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 21:12:34 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 03:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2011.02.24 11:11:20 | 000,234,104 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ubiorbitapi_r2_loader.dll
[2010.03.24 21:35:48 | 000,370,512 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 21:35:48 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.06.09 20:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.02.20 16:28:38 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.02.20 16:28:38 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.02.20 16:28:38 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.08.12 08:25:00 | 000,000,445 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HU844A4\fancybox.myloader.js[1].php
[2013.08.31 09:18:58 | 000,004,178 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\ajax-loader[1].gif
[2013.09.27 14:43:06 | 000,402,676 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\jsloader-1b446b6079e4[1].js
[2013.09.22 18:57:46 | 000,005,708 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\queryLoader[1].js
[2013.09.13 01:20:10 | 000,003,061 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCIVXNOZ\rmsloaderdelayeddiv[1].js
[2013.08.04 15:18:46 | 000,000,445 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VPY9LGSY\fancybox.myloader.js[1].php
[2013.09.27 14:43:13 | 000,151,509 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VPY9LGSY\jsloader-63507cacbc40[1].js
[2013.09.27 14:43:13 | 000,050,513 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\cssloader-5286d7d4fde8[1].css
[2013.09.27 14:43:06 | 000,109,071 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\cssloader-65670978b5a5[1].css
[2013.09.22 18:57:21 | 000,000,374 | ---- | M] () -- \Users\biofarm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YBCIU312\queryLoader[1].css
[2012.12.03 17:39:16 | 006,872,918 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1971 Guitar Boogie (vith Eric Clapton & Jeff Beck) @320\05 - Freight Loader (Eric Clapton & Jimmy Page).mp3
[2012.12.08 11:03:57 | 006,960,487 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1985 White Boy Blues Vol 1 (with Jeff Beck, John Mayall & Eric Clapton)(320)\06 - Freight Loader.Mp3
[2012.12.03 16:02:16 | 006,907,459 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\1987 Guitar Boogie (Eric Clapton, Jeff Beck & Jimmy Page) @320\05. Freight Loader.mp3
[2012.12.03 18:20:28 | 006,787,091 | ---- | M] () -- \Users\biofarm\Music\KYTARY A TAK\Jimmy Page - Discography 1965-2007\2007 Hip Young Guitar Slinger (and his heavy Friends) @320\CD2\15. Freight Loader.mp3
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< End of report >
Re: problem s vyhledáváním na google
OTL Extras logfile created on: 28.9.2013 14:57:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\biofarm\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,54 Gb Available Physical Memory | 26,93% Memory free
4,21 Gb Paging File | 1,49 Gb Available in Paging File | 35,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 115,14 Gb Total Space | 25,91 Gb Free Space | 22,51% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 60,81 Gb Free Space | 19,05% Space Free | Partition Type: NTFS
Drive F: | 537,30 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: BIOFARM-PC | User Name: biofarm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1677894996-3600867410-1148025045-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{185C072C-674A-4390-8EE0-0EB4A598CDDC}" = lport=57362 | protocol=6 | dir=in | name=pando media booster |
"{535FB4A2-DF6B-4159-ACAC-D3043E4EB1B4}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{69A91CC3-F02F-46A7-9B8F-3CD873DE6A0C}" = lport=57362 | protocol=17 | dir=in | name=pando media booster |
"{AE58F884-7F2D-4760-8C11-881C9524716B}" = lport=57362 | protocol=17 | dir=in | name=pando media booster |
"{B3DB8F08-4501-4E68-A2B3-3E28497ADF22}" = lport=57362 | protocol=6 | dir=in | name=pando media booster |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{004DF041-2C8A-456A-A527-A380630BD503}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 test\dota.exe |
"{072BE236-79FA-40D1-829F-76477A189F1A}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{0753743A-F3B3-4511-A11C-4CD45DDA2C9F}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"{0AD6B738-9965-4661-95D6-6B05D9952BD0}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dead space\support\ea help\electronic_arts_technical_support.htm |
"{0B1B9A4C-E180-4444-84D5-59CD7C9DA4F0}" = protocol=17 | dir=in | app=c:\program files (x86)\topcd\pirati a bukanyri\t3d.exe |
"{106D1AA2-4F50-4CC9-8762-DB7FDD3287DE}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{17201740-A6F5-40A9-979F-6124A2FB4AC3}" = protocol=17 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\base\bin\settlers6.exe |
"{19167EAB-C79D-4B3E-8E93-AEB62703CC5E}" = protocol=17 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\extra1\bin\settlers6.exe |
"{1958F5DD-3AB0-49FF-9C36-81445B2B4AA6}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 test\dota.exe |
"{19EBD99F-1FB5-4D42-BB62-EB75682D3A00}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{1D37A7CE-C210-4CEE-BBB7-C538D9BC6333}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{2060A141-FA5E-4EF5-8F16-C0C89D5A7CCA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{2793EFBA-AF9F-4B8A-AEC7-BFAED20F8AA8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\mp\mohmpgame.exe |
"{27ACDD8A-97A8-47A9-BAD7-07BE19449390}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{281E8094-6578-4A4A-8A03-5947C189DD99}" = protocol=6 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{29A91240-650B-4D73-9616-8CD891E7FD8C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\mp\mohmpgame.exe |
"{2C4F3DFE-F168-4614-88B1-E3043F49B0E0}" = protocol=6 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\extra1\bin\settlers6.exe |
"{32E5ACD8-FB55-4347-8757-EA06A90E51AF}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{3B15BAC9-6CAB-4E75-A511-D1C727609C52}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\support\ea help\electronic_arts_technical_support.htm |
"{3C9FF9F0-0E53-4052-971A-46B8F5237C63}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\binaries\moh.exe |
"{3F653A6A-9BE4-454F-A14C-740565D73CF4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm |
"{3FFD4CFD-9467-478D-BB82-ABBE1D16875A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{43EEF22B-297E-4CD5-9611-B7C894867DE8}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{4A187E5A-CA32-41C0-ABAE-4D9AC2F79E5C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4CB3390F-B82A-4D79-92EF-3C70DDD468FC}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe |
"{531DC475-82AC-401C-B857-F4362741AB43}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{5CC8A95D-95F4-40C3-AF64-C37FCFD07ABF}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{6162E0A4-D219-4439-B881-10081ED4D9E5}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"{67447E63-5CEC-4E62-B713-66E3B725EB80}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{6C541DA3-4A82-4AF6-86B6-307A74541BD5}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{6D55DEF0-C083-4832-B14C-F668D6964957}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{6E612189-861F-4BD7-AFD8-4D82FCF84D79}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{7006A44E-12E4-4985-A925-728998FF85D3}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{764A24F7-EB4B-4386-8889-E9A11837A8BA}" = protocol=6 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\base\bin\settlers6.exe |
"{77FEAB43-684B-4DB7-B005-FA63C3B18764}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dead space\support\ea help\electronic_arts_technical_support.htm |
"{7C242E52-50EE-4BFB-B649-9D05F0F76965}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{850629BA-DA6B-4F0D-9B52-557458EE3357}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{865852E4-9A77-4F96-9847-7614B59E50E9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\team fortress 2\hl2.exe |
"{9449F427-E949-46B5-BD52-DD7934ED7BCB}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{996B43BF-76AC-4631-BB4D-108EA2D0610E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{9B56944D-C770-46C6-887C-9DAE71F68938}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\portal 2\portal2.exe |
"{9F11C06B-EB50-4643-84D1-154606873482}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{A92696ED-5259-4733-9A06-281137C50A3C}" = protocol=17 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{AA80DA79-110F-4979-A869-B5F1711BF87A}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADA01E1D-1165-426D-B000-72EF82B42BE1}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADA56113-99C3-44E4-A495-1601E56DB9CD}" = protocol=17 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{AFCB8779-B375-4E82-8413-5534E0F75492}" = protocol=6 | dir=in | app=c:\program files (x86)\topcd\pirati a bukanyri\t3d.exe |
"{B10C58D0-3614-490C-B38E-B5FC671D0627}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B3DA5A42-ED4C-4AFB-9C0C-CEEB86B99413}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\binaries\moh.exe |
"{B8F1F5DE-488C-4247-A90F-B25E22488360}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm |
"{BC68689B-4D94-44B6-9104-78E85C8778CD}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\support\ea help\electronic_arts_technical_support.htm |
"{BC92F8E2-338E-4070-A7ED-BA50C6058913}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{BD9E20E0-7DF5-4603-BB4D-F782C4BD0047}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\support\ea help\electronic_arts_technical_support.htm |
"{BEA70BD9-69F2-46A8-A8FC-9778F087389F}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{BEAA77D3-2AC8-4B25-A3B5-24C5D6EBD830}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{BED2F04D-45C9-4CB0-A628-EBBF6F7DE29C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm |
"{C360F864-BE35-44FE-8215-03E9DAE14D37}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{C4C072CF-51A3-4E1A-9CD5-AB527049FA67}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\support\ea help\electronic_arts_technical_support.htm |
"{C747EDB2-67AC-49D5-BC87-0819EEA98402}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{C7A00CEC-1ECD-4ADB-93FB-8ED0AE2E450C}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{C7E22526-8819-4A7B-B3FA-1AC9E607A3A7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dead space\dead space.exe |
"{CE4B104D-48E8-47C6-BEC8-5B687A5E0D7A}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\portal 2\portal2.exe |
"{D00A623E-CF36-4831-9658-D2E98B4157CF}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{D9EDAC1B-7C8A-4DFD-B268-BE6DE92E9826}" = protocol=6 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{DDFE5E70-49B2-41DA-BBEB-BD11FAA0DE05}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dead space\dead space.exe |
"{E2348291-4C9A-499F-9C1A-F7E952283DE8}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{E6A576DB-91EB-4D8F-A49F-C6C32874328E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\team fortress 2\hl2.exe |
"{F000AD62-16C3-4DA7-9A3E-1195B3A32DF2}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm |
"{F046CA86-358D-4F16-9EBE-51BADF61D4CA}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe |
"{FF7E1399-4025-4A70-9BA1-7DB506D559C1}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"TCP Query User{1B43D278-DCB7-4F15-AABE-216BC9041452}D:\games\world_of_warplanes\wowplauncher.exe" = protocol=6 | dir=in | app=d:\games\world_of_warplanes\wowplauncher.exe |
"TCP Query User{21C0076D-04F7-47D5-B074-56A3719FEC8B}D:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe |
"TCP Query User{32EB8D07-0BFC-4DBB-877E-4E0F1295703E}D:\steam\steamapps\common\dota 2 beta\dota.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"TCP Query User{6F0D681E-4E87-4791-92A2-D6C53E1ADBF7}D:\quake iii arena\quake3.exe" = protocol=6 | dir=in | app=d:\quake iii arena\quake3.exe |
"UDP Query User{5167B8D0-586A-4039-91B6-44ACA6CFB988}D:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe |
"UDP Query User{6BC46032-5D95-4E22-802B-A028B21C23ED}D:\steam\steamapps\common\dota 2 beta\dota.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"UDP Query User{AD96048D-8D25-488C-A784-F482EC47A3D2}D:\games\world_of_warplanes\wowplauncher.exe" = protocol=17 | dir=in | app=d:\games\world_of_warplanes\wowplauncher.exe |
"UDP Query User{E479EA69-0969-4C27-9C45-FEAE64F78241}D:\quake iii arena\quake3.exe" = protocol=17 | dir=in | app=d:\quake iii arena\quake3.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E8670B8-3965-4930-ADA6-570348B67153}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{13D558FE-A863-402C-B115-160007277033}" = Microsoft SQL Server 2012 Express LocalDB
"{197985EE-73F2-B182-6AEB-21926621ED5D}" = ATI AVIVO64 Codecs
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{2748FDE2-7BA8-1D20-11A2-FF01CEB009A5}" = AMD Catalyst Install Manager
"{36E619BC-A234-4EC3-849B-779A7C865A45}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{4701DEDE-1888-49E0-BAE5-857875924CA2}" = Microsoft SQL Server System CLR Types (x64)
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
"{7A536085-9D02-A10F-10A8-2B26393645C3}" = AMD Drag and Drop Transcoding
"{7BC4167C-BD93-55BD-3C97-53D49764B89E}" = ccc-utility64
"{81F9BAD3-8695-87CE-F7FB-E0C2DAE248E8}" = AMD Media Foundation Decoders
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5 CSY Language Pack
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{93CC7ABC-A87B-6AB2-9E6D-073B5FF2A794}" = AMD Accelerated Video Transcoding
"{A4F0DB87-3269-34FE-AFFE-4168FDFA4A22}" = Microsoft .NET Framework 4.5 CSY Language Pack
"{BE090376-7EC6-3760-1EE2-B08AE3BEEF8C}" = AMD Fuel
"{D386FE62-CD8D-C8E0-DCA7-ED5FCAB476A5}" = AMD Wireless Display v3.0
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F1949145-EB64-4DE7-9D81-E6D27937146C}" = Microsoft System CLR Types for SQL Server 2012 (x64)
"{FA0A244E-F3C2-4589-B42A-3D522DE79A42}" = Microsoft SQL Server 2012 Management Objects (x64)
"CCleaner" = CCleaner
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.20 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{036A2AC2-5514-1499-8F0E-48009132658F}" = CCC Help Portuguese
"{0614BCA9-3613-4171-8128-621991A9FBF2}}_is1" = DeathTaker Gaming Mouse
"{0685213E-9FF3-1368-37E3-5CECB5A0708C}" = CCC Help Russian
"{07CD994D-2144-41B9-5C2C-A85B40EBBA51}" = CCC Help Finnish
"{0CB3C535-1171-4A20-B549-E2CB5DEB9723}" = MySQL Connector/ODBC 3.51
"{0F747F46-57A0-6CD3-A234-BD4E46F2BFEB}" = CCC Help Polish
"{1948E039-EC79-4591-951D-9867A8C14C90}" = Microsoft .NET Framework 4.5 SDK
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes
"{1EB8D6DC-DA9E-837D-C31A-0FCE20E1EF76}" = Catalyst Control Center Localization All
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{295E13D5-2CCE-C01B-4E21-F41F543CF2C2}" = CCC Help Spanish
"{384E9F9A-4E8C-562C-E6D1-E494F9CADF7C}" = CCC Help Korean
"{3A523AF9-D32F-4C85-8388-0335731F3405}" = WCF RIA Services V1.0 SP2
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3C249872-D97C-62F9-A3E2-F7AAAC07BEF8}" = CCC Help Chinese Traditional
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{45160C56-61F6-468D-A5B0-9FAE2C3E68D6}" = Catalyst Control Center - Branding
"{45B2C1A3-2050-0BC1-0A90-50EB4A7E77A8}" = CCC Help Turkish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BB8B7F6-726B-2301-DD5A-067F95A8A48F}" = CCC Help German
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{528EFF5D-2209-B614-40C0-5D87F73F3E8D}" = CCC Help French
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{58ECCB6B-73FB-CBBA-42FC-91659DFA342C}" = CCC Help Chinese Standard
"{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{6547BC5F-1FC4-CD5D-3783-45370C980043}" = AMD VISION Engine Control Center
"{6D6D43E5-218C-4B05-92D3-2240810F4760}" = Microsoft SQL Server 2012 T-SQL Language Service
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{752EEDEB-8605-8E51-2135-48AF996C8DFC}" = CCC Help English
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1" = Governor of Poker 2 Premium Edition v1.0 Multi
"{8D962C94-3D7C-2163-B37E-9CB48B7D1DCD}" = CCC Help Dutch
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
"{A6F818D2-85B7-84E2-C33C-8E74D747AD55}" = CCC Help Greek
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI - Czech
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B7666229-351B-47D9-AA6F-DF777CF04BBF}" = Caesar IV
"{B8230940-0DCC-E180-5744-4442F6C0CA28}" = CCC Help Thai
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C123749C-23EC-62DB-A5FD-1ED5BC359AAF}" = CCC Help Japanese
"{C218AFCB-7EAB-FEC3-6552-FF090B3FD0A1}" = CCC Help Czech
"{C533DBF1-3A98-5D7D-B6CA-59CC1816F38C}" = CCC Help Italian
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D29491A3-BA85-F712-5C8D-B7E6803FEAD7}" = CCC Help Hungarian
"{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}" = THE SETTLERS - Vzestup říše (všechny produkty)
"{D9A1A69D-D788-12C5-3218-64EFB8C6ACFD}" = Catalyst Control Center Graphics Previews Common
"{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}" = Microsoft SQL Server 2012 Management Objects
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}" = Microsoft System CLR Types for SQL Server 2012
"{E4C33F5B-1B2F-466E-957E-B274F08151A0}" = Microsoft Web Deploy dbSqlPackage Provider - enu
"{E745587A-2ED8-BA64-680E-BC35BE223275}" = CCC Help Danish
"{EA92CB68-9667-343A-1F53-B039583F2A3A}" = Catalyst Control Center InstallProxy
"{EC6004A3-B6E7-9728-55E8-508ABE51798F}" = CCC Help Norwegian
"{EDAA1085-C196-29B1-48B0-B82B72114001}" = CCC Help Swedish
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6130A03-30EE-D4AD-63C8-E90F422C76C5}" = HydraVision
"{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}" = Microsoft Help Viewer 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"AIMP3" = AIMP3
"avast" = avast! Free Antivirus
"BitRaider Web Client" = BitRaider Web Client
"Czech Soccer Manager 2002 FE" = Czech Soccer Manager 2002 FE
"CzechWoW" = Český překlad WoW
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"Floris Mod Pack_is1" = Floris Mod Pack 2.5
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.0
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"League of Legends 3.0.1" = League of Legends
"Medal of Honor Airborne" = Medal of Honor Airborne
"Medal of Honor Airborne v1.3" = Medal of Honor Airborne v1.3
"Microsoft Help Viewer 2.0" = Microsoft Help Viewer 2.0
"Mount&Blade Warband" = Mount&Blade Warband
"Mozilla Firefox 23.0.1 (x86 cs)" = Mozilla Firefox 23.0.1 (x86 cs)
"Piráti a Bukanýři_is1" = Piráti a Bukanýři
"Populous - The Beginning_is1" = Populous - The Beginning
"PunkBusterSvc" = PunkBuster Services
"Recover Files_is1" = Recover Files 3.31
"Risen 2 Dark Waters_is1" = Risen 2 Dark Waters
"Risen CZ 1.10" = Risen CZ 1.10
"SpeedFan" = SpeedFan (remove only)
"Steam App 108800" = Crysis 2 Maximum Edition
"Steam App 17410" = Mirror's Edge
"Steam App 17470" = Dead Space
"Steam App 202352" = Steam Trading Card Beta Access
"Steam App 24740" = Burnout Paradise: The Ultimate Box
"Steam App 24800" = Command and Conquer: Red Alert 3 - Uprising
"Steam App 47790" = Medal of Honor(TM) Single Player
"Steam App 47830" = Medal of Honor(TM) Multiplayer
"swtor_swtor" = Star Wars The Old Republic
"VLC media player" = VLC media player 1.1.11
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 12.9.2013 19:18:54 | Computer Name = biofarm-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 8.0.7600.16385 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 1094 Čas spuštění: 01ceb00d881e69ef Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení: 908dac43-1c01-11e3-94fe-50e549501e3e
Error - 13.9.2013 21:59:21 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x774 Čas spuštění chybující aplikace: 0x01ceafa8fc93677e Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: 450e2871-1ce1-11e3-94fe-50e549501e3e
Error - 14.9.2013 11:27:06 | Computer Name = biofarm-PC | Source = RasClient | ID = 20227
Description =
Error - 14.9.2013 11:29:03 | Computer Name = biofarm-PC | Source = RasClient | ID = 20227
Description =
Error - 14.9.2013 21:33:42 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb15970fbe1ff Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: da163914-1da6-11e3-9588-50e549501e3e
Error - 15.9.2013 6:28:25 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
Error - 15.9.2013 18:48:48 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb213fa1efbb5 Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: fb5eb961-1e58-11e3-88cf-50e549501e3e
Error - 17.9.2013 11:50:07 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 0.0.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb3ba98fd68e7 Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: d3292091-1fb0-11e3-b46b-50e549501e3e
Error - 24.9.2013 16:07:22 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
Error - 25.9.2013 15:12:16 | Computer Name = biofarm-PC | Source = BugSplat | ID = 1
Description =
Error - 27.9.2013 12:12:46 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
[ System Events ]
Error - 18.6.2013 2:35:29 | Computer Name = biofarm-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.
Error - 20.6.2013 10:52:32 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 20.6.2013 10:52:32 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 21.6.2013 6:06:37 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 21.6.2013 6:06:37 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 22.6.2013 1:05:16 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 22.6.2013 1:05:16 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 22.6.2013 1:06:02 | Computer Name = biofarm-PC | Source = DCOM | ID = 10010
Description =
Error - 24.6.2013 6:16:11 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 24.6.2013 6:16:11 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\biofarm\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,54 Gb Available Physical Memory | 26,93% Memory free
4,21 Gb Paging File | 1,49 Gb Available in Paging File | 35,43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 115,14 Gb Total Space | 25,91 Gb Free Space | 22,51% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 60,81 Gb Free Space | 19,05% Space Free | Partition Type: NTFS
Drive F: | 537,30 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: BIOFARM-PC | User Name: biofarm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1677894996-3600867410-1148025045-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{185C072C-674A-4390-8EE0-0EB4A598CDDC}" = lport=57362 | protocol=6 | dir=in | name=pando media booster |
"{535FB4A2-DF6B-4159-ACAC-D3043E4EB1B4}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{69A91CC3-F02F-46A7-9B8F-3CD873DE6A0C}" = lport=57362 | protocol=17 | dir=in | name=pando media booster |
"{AE58F884-7F2D-4760-8C11-881C9524716B}" = lport=57362 | protocol=17 | dir=in | name=pando media booster |
"{B3DB8F08-4501-4E68-A2B3-3E28497ADF22}" = lport=57362 | protocol=6 | dir=in | name=pando media booster |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{004DF041-2C8A-456A-A527-A380630BD503}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 test\dota.exe |
"{072BE236-79FA-40D1-829F-76477A189F1A}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{0753743A-F3B3-4511-A11C-4CD45DDA2C9F}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"{0AD6B738-9965-4661-95D6-6B05D9952BD0}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dead space\support\ea help\electronic_arts_technical_support.htm |
"{0B1B9A4C-E180-4444-84D5-59CD7C9DA4F0}" = protocol=17 | dir=in | app=c:\program files (x86)\topcd\pirati a bukanyri\t3d.exe |
"{106D1AA2-4F50-4CC9-8762-DB7FDD3287DE}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{17201740-A6F5-40A9-979F-6124A2FB4AC3}" = protocol=17 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\base\bin\settlers6.exe |
"{19167EAB-C79D-4B3E-8E93-AEB62703CC5E}" = protocol=17 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\extra1\bin\settlers6.exe |
"{1958F5DD-3AB0-49FF-9C36-81445B2B4AA6}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 test\dota.exe |
"{19EBD99F-1FB5-4D42-BB62-EB75682D3A00}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{1D37A7CE-C210-4CEE-BBB7-C538D9BC6333}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{2060A141-FA5E-4EF5-8F16-C0C89D5A7CCA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{2793EFBA-AF9F-4B8A-AEC7-BFAED20F8AA8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\mp\mohmpgame.exe |
"{27ACDD8A-97A8-47A9-BAD7-07BE19449390}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{281E8094-6578-4A4A-8A03-5947C189DD99}" = protocol=6 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{29A91240-650B-4D73-9616-8CD891E7FD8C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\mp\mohmpgame.exe |
"{2C4F3DFE-F168-4614-88B1-E3043F49B0E0}" = protocol=6 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\extra1\bin\settlers6.exe |
"{32E5ACD8-FB55-4347-8757-EA06A90E51AF}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{3B15BAC9-6CAB-4E75-A511-D1C727609C52}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\support\ea help\electronic_arts_technical_support.htm |
"{3C9FF9F0-0E53-4052-971A-46B8F5237C63}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\binaries\moh.exe |
"{3F653A6A-9BE4-454F-A14C-740565D73CF4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm |
"{3FFD4CFD-9467-478D-BB82-ABBE1D16875A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{43EEF22B-297E-4CD5-9611-B7C894867DE8}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{4A187E5A-CA32-41C0-ABAE-4D9AC2F79E5C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4CB3390F-B82A-4D79-92EF-3C70DDD468FC}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe |
"{531DC475-82AC-401C-B857-F4362741AB43}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{5CC8A95D-95F4-40C3-AF64-C37FCFD07ABF}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{6162E0A4-D219-4439-B881-10081ED4D9E5}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"{67447E63-5CEC-4E62-B713-66E3B725EB80}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{6C541DA3-4A82-4AF6-86B6-307A74541BD5}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{6D55DEF0-C083-4832-B14C-F668D6964957}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\assassinscreedbrotherhood.exe |
"{6E612189-861F-4BD7-AFD8-4D82FCF84D79}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{7006A44E-12E4-4985-A925-728998FF85D3}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\uplaybrowser.exe |
"{764A24F7-EB4B-4386-8889-E9A11837A8BA}" = protocol=6 | dir=in | app=d:\ubisoft\the settlers - vzestup říše\base\bin\settlers6.exe |
"{77FEAB43-684B-4DB7-B005-FA63C3B18764}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dead space\support\ea help\electronic_arts_technical_support.htm |
"{7C242E52-50EE-4BFB-B649-9D05F0F76965}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{850629BA-DA6B-4F0D-9B52-557458EE3357}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{865852E4-9A77-4F96-9847-7614B59E50E9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\team fortress 2\hl2.exe |
"{9449F427-E949-46B5-BD52-DD7934ED7BCB}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{996B43BF-76AC-4631-BB4D-108EA2D0610E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{9B56944D-C770-46C6-887C-9DAE71F68938}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\portal 2\portal2.exe |
"{9F11C06B-EB50-4643-84D1-154606873482}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{A92696ED-5259-4733-9A06-281137C50A3C}" = protocol=17 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{AA80DA79-110F-4979-A869-B5F1711BF87A}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADA01E1D-1165-426D-B000-72EF82B42BE1}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADA56113-99C3-44E4-A495-1601E56DB9CD}" = protocol=17 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{AFCB8779-B375-4E82-8413-5534E0F75492}" = protocol=6 | dir=in | app=c:\program files (x86)\topcd\pirati a bukanyri\t3d.exe |
"{B10C58D0-3614-490C-B38E-B5FC671D0627}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B3DA5A42-ED4C-4AFB-9C0C-CEEB86B99413}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\binaries\moh.exe |
"{B8F1F5DE-488C-4247-A90F-B25E22488360}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm |
"{BC68689B-4D94-44B6-9104-78E85C8778CD}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\support\ea help\electronic_arts_technical_support.htm |
"{BC92F8E2-338E-4070-A7ED-BA50C6058913}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{BD9E20E0-7DF5-4603-BB4D-F782C4BD0047}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\command and conquer red alert 3 uprising\support\ea help\electronic_arts_technical_support.htm |
"{BEA70BD9-69F2-46A8-A8FC-9778F087389F}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{BEAA77D3-2AC8-4B25-A3B5-24C5D6EBD830}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{BED2F04D-45C9-4CB0-A628-EBBF6F7DE29C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm |
"{C360F864-BE35-44FE-8215-03E9DAE14D37}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"{C4C072CF-51A3-4E1A-9CD5-AB527049FA67}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\burnout(tm) paradise the ultimate box\support\ea help\electronic_arts_technical_support.htm |
"{C747EDB2-67AC-49D5-BC87-0819EEA98402}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{C7A00CEC-1ECD-4ADB-93FB-8ED0AE2E450C}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{C7E22526-8819-4A7B-B3FA-1AC9E607A3A7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dead space\dead space.exe |
"{CE4B104D-48E8-47C6-BEC8-5B687A5E0D7A}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\portal 2\portal2.exe |
"{D00A623E-CF36-4831-9658-D2E98B4157CF}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{D9EDAC1B-7C8A-4DFD-B268-BE6DE92E9826}" = protocol=6 | dir=in | app=d:\games\star wars-the old republic\launcher.exe |
"{DDFE5E70-49B2-41DA-BBEB-BD11FAA0DE05}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dead space\dead space.exe |
"{E2348291-4C9A-499F-9C1A-F7E952283DE8}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{E6A576DB-91EB-4D8F-A49F-C6C32874328E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\team fortress 2\hl2.exe |
"{F000AD62-16C3-4DA7-9A3E-1195B3A32DF2}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\mirrors edge\support\ea help\electronic_arts_technical_support.htm |
"{F046CA86-358D-4F16-9EBE-51BADF61D4CA}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\mirrors edge\binaries\mirrorsedge.exe |
"{FF7E1399-4025-4A70-9BA1-7DB506D559C1}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"TCP Query User{1B43D278-DCB7-4F15-AABE-216BC9041452}D:\games\world_of_warplanes\wowplauncher.exe" = protocol=6 | dir=in | app=d:\games\world_of_warplanes\wowplauncher.exe |
"TCP Query User{21C0076D-04F7-47D5-B074-56A3719FEC8B}D:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe |
"TCP Query User{32EB8D07-0BFC-4DBB-877E-4E0F1295703E}D:\steam\steamapps\common\dota 2 beta\dota.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"TCP Query User{6F0D681E-4E87-4791-92A2-D6C53E1ADBF7}D:\quake iii arena\quake3.exe" = protocol=6 | dir=in | app=d:\quake iii arena\quake3.exe |
"UDP Query User{5167B8D0-586A-4039-91B6-44ACA6CFB988}D:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe |
"UDP Query User{6BC46032-5D95-4E22-802B-A028B21C23ED}D:\steam\steamapps\common\dota 2 beta\dota.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dota 2 beta\dota.exe |
"UDP Query User{AD96048D-8D25-488C-A784-F482EC47A3D2}D:\games\world_of_warplanes\wowplauncher.exe" = protocol=17 | dir=in | app=d:\games\world_of_warplanes\wowplauncher.exe |
"UDP Query User{E479EA69-0969-4C27-9C45-FEAE64F78241}D:\quake iii arena\quake3.exe" = protocol=17 | dir=in | app=d:\quake iii arena\quake3.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E8670B8-3965-4930-ADA6-570348B67153}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{13D558FE-A863-402C-B115-160007277033}" = Microsoft SQL Server 2012 Express LocalDB
"{197985EE-73F2-B182-6AEB-21926621ED5D}" = ATI AVIVO64 Codecs
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{2748FDE2-7BA8-1D20-11A2-FF01CEB009A5}" = AMD Catalyst Install Manager
"{36E619BC-A234-4EC3-849B-779A7C865A45}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{4701DEDE-1888-49E0-BAE5-857875924CA2}" = Microsoft SQL Server System CLR Types (x64)
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
"{7A536085-9D02-A10F-10A8-2B26393645C3}" = AMD Drag and Drop Transcoding
"{7BC4167C-BD93-55BD-3C97-53D49764B89E}" = ccc-utility64
"{81F9BAD3-8695-87CE-F7FB-E0C2DAE248E8}" = AMD Media Foundation Decoders
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5 CSY Language Pack
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{93CC7ABC-A87B-6AB2-9E6D-073B5FF2A794}" = AMD Accelerated Video Transcoding
"{A4F0DB87-3269-34FE-AFFE-4168FDFA4A22}" = Microsoft .NET Framework 4.5 CSY Language Pack
"{BE090376-7EC6-3760-1EE2-B08AE3BEEF8C}" = AMD Fuel
"{D386FE62-CD8D-C8E0-DCA7-ED5FCAB476A5}" = AMD Wireless Display v3.0
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F1949145-EB64-4DE7-9D81-E6D27937146C}" = Microsoft System CLR Types for SQL Server 2012 (x64)
"{FA0A244E-F3C2-4589-B42A-3D522DE79A42}" = Microsoft SQL Server 2012 Management Objects (x64)
"CCleaner" = CCleaner
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.20 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{036A2AC2-5514-1499-8F0E-48009132658F}" = CCC Help Portuguese
"{0614BCA9-3613-4171-8128-621991A9FBF2}}_is1" = DeathTaker Gaming Mouse
"{0685213E-9FF3-1368-37E3-5CECB5A0708C}" = CCC Help Russian
"{07CD994D-2144-41B9-5C2C-A85B40EBBA51}" = CCC Help Finnish
"{0CB3C535-1171-4A20-B549-E2CB5DEB9723}" = MySQL Connector/ODBC 3.51
"{0F747F46-57A0-6CD3-A234-BD4E46F2BFEB}" = CCC Help Polish
"{1948E039-EC79-4591-951D-9867A8C14C90}" = Microsoft .NET Framework 4.5 SDK
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes
"{1EB8D6DC-DA9E-837D-C31A-0FCE20E1EF76}" = Catalyst Control Center Localization All
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{295E13D5-2CCE-C01B-4E21-F41F543CF2C2}" = CCC Help Spanish
"{384E9F9A-4E8C-562C-E6D1-E494F9CADF7C}" = CCC Help Korean
"{3A523AF9-D32F-4C85-8388-0335731F3405}" = WCF RIA Services V1.0 SP2
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3C249872-D97C-62F9-A3E2-F7AAAC07BEF8}" = CCC Help Chinese Traditional
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{45160C56-61F6-468D-A5B0-9FAE2C3E68D6}" = Catalyst Control Center - Branding
"{45B2C1A3-2050-0BC1-0A90-50EB4A7E77A8}" = CCC Help Turkish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BB8B7F6-726B-2301-DD5A-067F95A8A48F}" = CCC Help German
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{528EFF5D-2209-B614-40C0-5D87F73F3E8D}" = CCC Help French
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{58ECCB6B-73FB-CBBA-42FC-91659DFA342C}" = CCC Help Chinese Standard
"{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{6547BC5F-1FC4-CD5D-3783-45370C980043}" = AMD VISION Engine Control Center
"{6D6D43E5-218C-4B05-92D3-2240810F4760}" = Microsoft SQL Server 2012 T-SQL Language Service
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{752EEDEB-8605-8E51-2135-48AF996C8DFC}" = CCC Help English
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1" = Governor of Poker 2 Premium Edition v1.0 Multi
"{8D962C94-3D7C-2163-B37E-9CB48B7D1DCD}" = CCC Help Dutch
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
"{A6F818D2-85B7-84E2-C33C-8E74D747AD55}" = CCC Help Greek
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI - Czech
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B7666229-351B-47D9-AA6F-DF777CF04BBF}" = Caesar IV
"{B8230940-0DCC-E180-5744-4442F6C0CA28}" = CCC Help Thai
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C123749C-23EC-62DB-A5FD-1ED5BC359AAF}" = CCC Help Japanese
"{C218AFCB-7EAB-FEC3-6552-FF090B3FD0A1}" = CCC Help Czech
"{C533DBF1-3A98-5D7D-B6CA-59CC1816F38C}" = CCC Help Italian
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D29491A3-BA85-F712-5C8D-B7E6803FEAD7}" = CCC Help Hungarian
"{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}" = THE SETTLERS - Vzestup říše (všechny produkty)
"{D9A1A69D-D788-12C5-3218-64EFB8C6ACFD}" = Catalyst Control Center Graphics Previews Common
"{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}" = Microsoft SQL Server 2012 Management Objects
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}" = Microsoft System CLR Types for SQL Server 2012
"{E4C33F5B-1B2F-466E-957E-B274F08151A0}" = Microsoft Web Deploy dbSqlPackage Provider - enu
"{E745587A-2ED8-BA64-680E-BC35BE223275}" = CCC Help Danish
"{EA92CB68-9667-343A-1F53-B039583F2A3A}" = Catalyst Control Center InstallProxy
"{EC6004A3-B6E7-9728-55E8-508ABE51798F}" = CCC Help Norwegian
"{EDAA1085-C196-29B1-48B0-B82B72114001}" = CCC Help Swedish
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6130A03-30EE-D4AD-63C8-E90F422C76C5}" = HydraVision
"{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}" = Microsoft Help Viewer 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"AIMP3" = AIMP3
"avast" = avast! Free Antivirus
"BitRaider Web Client" = BitRaider Web Client
"Czech Soccer Manager 2002 FE" = Czech Soccer Manager 2002 FE
"CzechWoW" = Český překlad WoW
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"Floris Mod Pack_is1" = Floris Mod Pack 2.5
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.0
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"League of Legends 3.0.1" = League of Legends
"Medal of Honor Airborne" = Medal of Honor Airborne
"Medal of Honor Airborne v1.3" = Medal of Honor Airborne v1.3
"Microsoft Help Viewer 2.0" = Microsoft Help Viewer 2.0
"Mount&Blade Warband" = Mount&Blade Warband
"Mozilla Firefox 23.0.1 (x86 cs)" = Mozilla Firefox 23.0.1 (x86 cs)
"Piráti a Bukanýři_is1" = Piráti a Bukanýři
"Populous - The Beginning_is1" = Populous - The Beginning
"PunkBusterSvc" = PunkBuster Services
"Recover Files_is1" = Recover Files 3.31
"Risen 2 Dark Waters_is1" = Risen 2 Dark Waters
"Risen CZ 1.10" = Risen CZ 1.10
"SpeedFan" = SpeedFan (remove only)
"Steam App 108800" = Crysis 2 Maximum Edition
"Steam App 17410" = Mirror's Edge
"Steam App 17470" = Dead Space
"Steam App 202352" = Steam Trading Card Beta Access
"Steam App 24740" = Burnout Paradise: The Ultimate Box
"Steam App 24800" = Command and Conquer: Red Alert 3 - Uprising
"Steam App 47790" = Medal of Honor(TM) Single Player
"Steam App 47830" = Medal of Honor(TM) Multiplayer
"swtor_swtor" = Star Wars The Old Republic
"VLC media player" = VLC media player 1.1.11
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 12.9.2013 19:18:54 | Computer Name = biofarm-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 8.0.7600.16385 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 1094 Čas spuštění: 01ceb00d881e69ef Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení: 908dac43-1c01-11e3-94fe-50e549501e3e
Error - 13.9.2013 21:59:21 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x774 Čas spuštění chybující aplikace: 0x01ceafa8fc93677e Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: 450e2871-1ce1-11e3-94fe-50e549501e3e
Error - 14.9.2013 11:27:06 | Computer Name = biofarm-PC | Source = RasClient | ID = 20227
Description =
Error - 14.9.2013 11:29:03 | Computer Name = biofarm-PC | Source = RasClient | ID = 20227
Description =
Error - 14.9.2013 21:33:42 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb15970fbe1ff Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: da163914-1da6-11e3-9588-50e549501e3e
Error - 15.9.2013 6:28:25 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
Error - 15.9.2013 18:48:48 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb213fa1efbb5 Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: fb5eb961-1e58-11e3-88cf-50e549501e3e
Error - 17.9.2013 11:50:07 | Computer Name = biofarm-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové
razítko: 0x4f7e4d8c Název chybujícího modulu: Device.dll, verze: 0.0.0.0, časové
razítko: 0x4f55e10b Kód výjimky: 0xc0000005 Posun chyby: 0x00000000000033c1 ID chybujícího
procesu: 0x7ac Čas spuštění chybující aplikace: 0x01ceb3ba98fd68e7 Cesta k chybující
aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Cesta
k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll ID
zprávy: d3292091-1fb0-11e3-b46b-50e549501e3e
Error - 24.9.2013 16:07:22 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
Error - 25.9.2013 15:12:16 | Computer Name = biofarm-PC | Source = BugSplat | ID = 1
Description =
Error - 27.9.2013 12:12:46 | Computer Name = biofarm-PC | Source = Chrome | ID = 1
Description =
[ System Events ]
Error - 18.6.2013 2:35:29 | Computer Name = biofarm-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.
Error - 20.6.2013 10:52:32 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 20.6.2013 10:52:32 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 21.6.2013 6:06:37 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 21.6.2013 6:06:37 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 22.6.2013 1:05:16 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 22.6.2013 1:05:16 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
Error - 22.6.2013 1:06:02 | Computer Name = biofarm-PC | Source = DCOM | ID = 10010
Description =
Error - 24.6.2013 6:16:11 | Computer Name = biofarm-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače atksgt.sys je blokováno.
Error - 24.6.2013 6:16:11 | Computer Name = biofarm-PC | Source = Service Control Manager | ID = 7000
Description = Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%1275
< End of report >
Re: problem s vyhledáváním na google
Takze je to jak jsem si myslel, v logu je zcela zretelny crack na windows a jejich obchazeni licence.
Kamarad je opravdu dobry kamarad, kdyz vas vedomne vystahuje moznosti trestniho stihani za porusovania autorskeho zakona, pachani trestneho cinu atd...A mnoha tisicive pokuty...
My tu zde toto nepodporujeme a je to jasne napsano v pravidlech fora.
Kamarad je opravdu dobry kamarad, kdyz vas vedomne vystahuje moznosti trestniho stihani za porusovania autorskeho zakona, pachani trestneho cinu atd...A mnoha tisicive pokuty...
My tu zde toto nepodporujeme a je to jasne napsano v pravidlech fora.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: problem s vyhledáváním na google
Díky za pomoc.
Re: problem s vyhledáváním na google
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?
