Zamrzání PC

Zpráva

pet368 · #1 Příspěvek od **pet368** » 22 úno 2014 18:20

Dobrý den,
Velice rád bych Vás poprosil o kontrolu logu. PC cca po 20 minutách zamrze, je nutný restart...tato situace se nadále opakuje.
Děkuji za kontrolu a Vaši odpověď.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:11:54, on 22.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16483)
Boot mode: Normal

Running processes:
H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
H:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
H:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
H:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
H:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
H:\Program Files\AVAST Software\Avast\AvastUI.exe
H:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
H:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
H:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
H:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
H:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
H:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
H:\Program Files\trend micro\Honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = H:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Speed Analysis 3 - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - H:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - H:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - H:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SDTray] "H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [HP Software Update] H:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] H:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [APSDaemon] "H:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "H:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "H:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "H:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O4 - Global Startup: CineForm Status.lnk = H:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = H:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://H:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - H:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - H:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - H:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - H:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - H:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - H:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ArcGIS License Manager - Flexera Software, Inc. - H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - H:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CrossLoop Service (CrossLoopService) - CrossLoop - H:\Users\Honza\AppData\Local\CrossLoop\CrossLoopService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - H:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - H:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - H:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software LLC - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - H:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - H:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - H:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - H:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - H:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - H:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - H:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - H:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - H:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - H:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - H:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - H:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - H:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - H:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: Transoft Solutions License Server V1.7 - Unknown owner - H:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe
O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - H:\Users\Honza\AppData\Local\CrossLoop\tvnserver.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - H:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - H:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - H:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - H:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - H:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - H:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - H:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - H:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12954 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
H:\Windows\system32\services.exe
H:\Windows\system32\lsass.exe
H:\Windows\system32\lsm.exe
H:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
H:\Windows\system32\svchost.exe -k RPCSS
H:\Windows\system32\atiesrxx.exe
H:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
H:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
H:\Windows\system32\svchost.exe -k netsvcs
H:\Windows\system32\svchost.exe -k LocalService
H:\Windows\system32\svchost.exe -k NetworkService
"H:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"H:\Windows\system32\Dwm.exe"
H:\Windows\Explorer.EXE
H:\Windows\System32\spoolsv.exe
"taskhost.exe"
H:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
"H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"H:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe"
"H:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"H:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"H:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe"
"H:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe"
\??\H:\Windows\system32\conhost.exe "-2106302062-446942609-393676268-5240719911363975114-673038444636966112415341641
"H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe" -c "H:\Program Files (x86)\ArcGIS\License10.0\bin\9.xLic.lic" -l "H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd9.log" -z
"H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
ARCGIS.exe -T Honza-PC 11.9 -1 -c "H:\Program Files (x86)\ArcGIS\License10.0\bin\9.xLic.lic" --lmgrd_start 5308d7e0 -l "H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd9.log"
"H:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"H:\Users\Honza\AppData\Local\CrossLoop\CrossLoopService.exe" --service
H:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
H:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"h:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sTRANSOFTSERVER
"H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
H:\Windows\System32\svchost.exe -k HPZ12
"H:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
H:\Windows\System32\svchost.exe -k HPZ12
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"h:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"H:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
"h:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"H:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
H:\Windows\system32\svchost.exe -k imgsvc
"H:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
H:\Windows\system32\svchost.exe -k HPService
H:\Windows\system32\SearchIndexer.exe /Embedding
H:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"H:\Program Files\Windows Media Player\wmpnetwk.exe"
H:\Windows\system32\wbem\wmiprvse.exe
H:\Windows\System32\svchost.exe -k LocalServicePeerNet
"H:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart 2570 series#1370551696" -Startup
"H:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"H:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"
"H:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe" /scan
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5328.0.1731779683\1941022654" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --gpu-vendor-id=0x1002 --gpu-device-id=0x6810 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.0.0 --ignored=" --type=renderer " /prefetch:822062411
H:\Windows\System32\svchost.exe -k secsvcs
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StableReorderHoldbackR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_70/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5328.3.1606259245\1329792997" /prefetch:673131151
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5328.4.888818200\1553017072" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"H:\Windows\system32\wuauclt.exe"
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StableReorderHoldbackR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_70/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5328.8.18553319\1215282881" /prefetch:673131151
"H:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"H:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE"
"H:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"H:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StableReorderHoldbackR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_70/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5328.10.1654981848\1042342610" /prefetch:673131151
"H:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "H:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"H:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"H:\Users\Honza\Downloads\RSITx64.exe"
taskeng.exe {4EDF28C3-CFFD-4C17-9641-7E3AE8DFEAAA}
H:\Windows\system32\wbem\wmiprvse.exe
H:\Windows\System32\svchost.exe -k WerSvcGroup
"H:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-4183335329-3543758517-1907008434-10006_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-4183335329-3543758517-1907008434-10006 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "H:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

======Scheduled tasks folder======

H:\Windows\tasks\Adobe Flash Player Updater.job
H:\Windows\tasks\GoogleUpdateTaskMachineCore.job
H:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-16 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-16 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]
Speed Analysis 3 - H:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll [2013-10-03 381760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - H:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2012-10-01 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
DVDVideoSoft WebPageAdjuster Class - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2013-08-27 336952]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - H:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll [2012-11-13 3214392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - H:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-02-16 1143168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]
Speed Analysis 3 - H:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll [2013-10-03 400704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - H:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - H:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - H:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
DVDVideoSoft WebPageAdjuster Class - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2013-08-27 277560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-16 1390368]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-02-16 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-02-16 1143168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorShield"=H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-04-03 2777736]
"SpywareTerminatorUpdater"=H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"=H:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-02-02 3034432]
"Autodesk Sync"=H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2013-08-12 1317256]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SDTray"=H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2012-11-13 3825176]
"HP Software Update"=H:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"hpqSRMon"=H:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
"APSDaemon"=H:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=H:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"SunJavaUpdateSched"=H:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=H:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-02-16 3767096]
"StartCCC"=H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-06 766208]

H:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CineForm Status.lnk - H:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
HP Digital Imaging Monitor.lnk - H:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=3

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="H:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=H:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.CFHD"=CFHD.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - H:\Windows\System32\Notepad.exe %1
.js - open - H:\Windows\System32\WScript.exe "%1" %*
.scr - open - H:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-02-22 18:11:07 ----D---- H:\Program Files\trend micro
2014-02-22 18:11:06 ----D---- H:\rsit
2014-02-16 18:11:01 ----A---- H:\Windows\system32\drivers\aswStm.sys
2014-02-07 16:51:21 ----D---- H:\ProgramData\ATI
2014-02-07 16:44:09 ----D---- H:\Program Files (x86)\AMD AVT
2014-02-07 16:41:23 ----D---- H:\Program Files\AMD
2014-02-07 16:31:42 ----D---- H:\ProgramData\Package Cache
2014-02-07 16:07:44 ----D---- H:\Users\Honza\AppData\Roaming\AVAST Software

======List of files/folders modified in the last 1 month======

2014-02-22 18:11:09 ----D---- H:\Windows\Temp
2014-02-22 18:11:07 ----RD---- H:\Program Files
2014-02-22 18:08:00 ----D---- H:\Windows\System32
2014-02-22 18:08:00 ----D---- H:\Windows\inf
2014-02-22 18:08:00 ----A---- H:\Windows\system32\PerfStringBackup.INI
2014-02-22 18:01:09 ----D---- H:\Windows
2014-02-22 17:39:20 ----D---- H:\Windows\Minidump
2014-02-22 14:49:05 ----D---- H:\Windows\system32\config
2014-02-21 19:01:39 ----D---- H:\Program Files (x86)\The KMPlayer
2014-02-21 15:21:13 ----D---- H:\Windows\SysWOW64
2014-02-21 15:21:12 ----D---- H:\ProgramData\Spyware Terminator
2014-02-21 15:21:07 ----A---- H:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-19 19:46:01 ----SHD---- H:\Windows\Installer
2014-02-19 19:46:01 ----HD---- H:\Config.Msi
2014-02-19 19:41:16 ----RD---- H:\Program Files (x86)
2014-02-19 19:40:30 ----SHD---- H:\System Volume Information
2014-02-19 08:03:02 ----D---- H:\Windows\system32\drivers\etc
2014-02-16 18:11:19 ----D---- H:\Windows\system32\drivers
2014-02-16 18:11:01 ----D---- H:\Windows\system32\Tasks
2014-02-16 18:10:36 ----A---- H:\Windows\system32\aswBoot.exe
2014-02-09 08:22:01 ----D---- H:\Program Files (x86)\SpeedFan
2014-02-08 16:40:01 ----D---- H:\Program Files (x86)\MyPC Backup
2014-02-08 10:22:44 ----D---- H:\Windows\system32\wdi
2014-02-07 17:13:04 ----D---- H:\Windows\Microsoft.NET
2014-02-07 16:51:47 ----HD---- H:\ProgramData
2014-02-07 16:49:54 ----D---- H:\Windows\system32\catroot
2014-02-07 16:44:13 ----D---- H:\ProgramData\AMD
2014-02-07 16:42:48 ----D---- H:\Program Files\ATI Technologies
2014-02-07 16:41:30 ----D---- H:\Windows\system32\DriverStore
2014-02-07 16:41:27 ----D---- H:\Windows\system32\catroot2
2014-02-07 16:38:52 ----A---- H:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-07 16:36:44 ----D---- H:\Windows\SYSWOW64\cs-CZ
2014-02-07 16:36:44 ----D---- H:\Windows\system32\cs-CZ
2014-02-07 16:33:11 ----D---- H:\Windows\SYSWOW64\en-US
2014-02-07 16:33:11 ----D---- H:\Windows\system32\en-US
2014-02-07 16:25:31 ----SD---- H:\ProgramData\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; H:\Windows\system32\drivers\aswRvrt.sys [2013-11-28 65776]
R0 aswVmm;avast! VM Monitor; H:\Windows\system32\drivers\aswVmm.sys [2014-02-16 207904]
R0 pciide;pciide; H:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; H:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; H:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; H:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; \??\H:\Windows\system32\drivers\aswRdr2.sys [2013-11-28 92544]
R1 aswSnx;aswSnx; \??\H:\Windows\system32\drivers\aswSnx.sys [2014-02-16 1038072]
R1 aswSP;aswSP; \??\H:\Windows\system32\drivers\aswSP.sys [2014-02-16 421704]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; H:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; H:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-05-19 283200]
R2 aswMonFlt;aswMonFlt; \??\H:\Windows\system32\drivers\aswMonFlt.sys [2014-02-16 78648]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; H:\Windows\system32\DRIVERS\stflt.sys [2013-05-19 51496]
R3 amdkmdag;amdkmdag; H:\Windows\system32\DRIVERS\atikmdag.sys [2013-12-06 13207552]
R3 amdkmdap;amdkmdap; H:\Windows\system32\DRIVERS\atikmpag.sys [2013-12-06 626176]
R3 aswStm;aswStm; \??\H:\Windows\system32\drivers\aswStm.sys [2014-02-16 80184]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; H:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 RTL8167;Realtek 8167 NT Driver; H:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 atikmdag;atikmdag; H:\Windows\system32\DRIVERS\atikmdag.sys [2013-12-06 13207552]
S3 Dot4;MS IEEE-1284.4 Driver; H:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; H:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; H:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 RDPDR;Terminal Server Device Redirector Driver; H:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; H:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; H:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; H:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; H:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; H:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; H:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; H:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; H:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; H:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; H:\Windows\system32\atiesrxx.exe [2013-12-06 239616]
R2 ArcGIS License Manager;ArcGIS License Manager; H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2010-07-12 1377104]
R2 Autodesk Content Service;Autodesk Content Service; H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 avast! Antivirus;avast! Antivirus; H:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-02-16 50344]
R2 CrossLoopService;CrossLoop Service; H:\Users\Honza\AppData\Local\CrossLoop\CrossLoopService.exe [2012-01-06 569072]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; H:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; H:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; H:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MSSQL$TRANSOFTSERVER;SQL Server (TRANSOFTSERVER); h:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
R2 Net Driver HPZ12;Net Driver HPZ12; H:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; H:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 Pml Driver HPZ12;Pml Driver HPZ12; H:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; H:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; H:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; H:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
R2 SQLBrowser;SQL Server Browser; h:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; h:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; H:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-04-03 1149104]
R2 Transoft Solutions License Server V1.7;Transoft Solutions License Server V1.7; H:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe [2012-05-01 446464]
R3 hpqcxs08;hpqcxs08; H:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 osppsvc;Office Software Protection Platform; H:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; H:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; H:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); H:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-19 116648]
S2 SkypeUpdate;Skype Updater; H:\Program Files (x86)\Skype\Updater\Updater.exe [2013-04-19 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; H:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 AppMgmt;@appmgmts.dll,-3250; H:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-08-05 1471352]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; H:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-08-08 867080]
S3 gupdatem;Služba Google Update (gupdatem); H:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-19 116648]
S3 ose64;Office 64 Source Engine; H:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; H:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 tvnserver;TightVNC Server; H:\Users\Honza\AppData\Local\CrossLoop\tvnserver.exe [2010-07-21 814080]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; H:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; H:\Windows\system32\Wat\WatAdminSvc.exe [2013-06-07 1255736]
S4 aspnet_state;Stavová služba ASP.NET; H:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; h:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 NetMsmqActivator;@H:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; H:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@H:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; H:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@H:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; H:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 22 úno 2014 18:27

Zdravim

Odinstalujte Spybota, program je zastaraly.

Odinstalujte i Terminatora, muze byt v konfliktu s Avastem.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

pet368 · #3 Příspěvek od **pet368** » 22 úno 2014 18:49

# AdwCleaner v3.019 - Report created 22/02/2014 at 18:45:07
# Updated 17/02/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Honza - HONZA-PC
# Running from : H:\Users\Honza\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : H:\Users\Honza\AppData\Roaming\speedanalysis.ico
Folder Found : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Folder Found : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
Folder Found H:\Program Files (x86)\MyPC Backup
Folder Found H:\Program Files (x86)\Speed Analysis 3
Folder Found H:\ProgramData\AlawarWrapper
Folder Found H:\ProgramData\IBUpdaterService
Folder Found H:\Users\Honza\AppData\Local\AlawarWrapper
Folder Found H:\Users\Honza\AppData\Roaming\dvdvideosoftiehelpers
Folder Found H:\Users\Honza\AppData\Roaming\file scout
Folder Found H:\Users\Honza\AppData\Roaming\SpeedAnalysis3
Folder Found H:\Users\Honza\AppData\Roaming\zulagames

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\filescout
Key Found : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Found : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject.1
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar.1
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool
Key Found : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{0771C34F-730F-4535-AD4C-37B74D27188E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{15998F3C-BBA9-476D-8FC2-09BE9E3B8751}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A09B0156-EFCE-46B4-9118-BC270EA654C1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D88E0FD9-31EB-48EF-BC89-35EBCE0E813C}
Key Found : HKLM\SOFTWARE\Classes\Zula Games.BackgroundHostObject
Key Found : HKLM\SOFTWARE\Classes\Zula Games.BackgroundHostObject.1
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 3
Key Found : HKLM\Software\PIP
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{ACE0D5AB-50C8-4052-BD02-977569E56291}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Value Found : HKCU\Software\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
Value Found : HKCU\Software\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16483

-\\ Google Chrome v33.0.1750.117

[ File : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [4980 octets] - [22/02/2014 18:45:07]

########## EOF - H:\AdwCleaner\AdwCleaner[R0].txt - [5040 octets] ##########

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x64)
Date : 2014/02/22 18:44:06

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Řadič úložiště Intel(R) ICH8 s rozhraním Serial ATA 4portový - 2820 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Řadič úložiště Intel(R) ICH8 s rozhraním Serial ATA 2portový - 2825 [ATA]
+ ATA Channel 0 (0)
- _NEC DVD_RW ND-4571A ATA Device
- KINGSTON SH103S3120G ATA Device
- ST3320620AS ATA Device
+ ATA Channel 1 (1)
- Hitachi HDT725050VLA360 ATA Device

-- Disk List ---------------------------------------------------------------
(1) ST3320620AS : 320,0 GB [0/2/0, pd1] - st
(2) KINGSTON SH103S3120G : 120,0 GB [1/2/1, pd1] - sf
(3) Hitachi HDT725050VLA360 : 500,1 GB [2/3/0, pd1]

----------------------------------------------------------------------------
(1) ST3320620AS
----------------------------------------------------------------------------
Model : ST3320620AS
Firmware : 3.AAD
Serial Number : 4QF01BP8
Disk Size : 320,0 GB (8,4/137,4/320,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 625140335
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 23208 hod.
Power On Count : 3925 krát
Temparature : 41 C (105 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 117 _70 __6 0000099AB84C Počet chyb čtení
03 _96 _95 __0 000000000000 Čas na roztočení ploten
04 _89 _89 _20 000000002C1C Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _87 _60 _30 000022149813 Počet chybných hledání
09 _74 _74 __0 000000005AA8 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _97 _97 _20 000000000F55 Počet cyklů zapnutí zařízení
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _59 _47 _45 000029280029 Teplota toku vzduchu
C2 _41 _53 __0 001200000029 Teplota
C3 _72 _52 __0 000003A0D2D7 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3451 3451 4630 3142 5038
020: 0000 8000 0004 332E 4141 2020 2020 5354 3333 3230
030: 3632 3041 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0506 0506 0000 0048 0040
080: 00FE 0000 346B 7D01 4023 3C01 3C01 4023 207F 0000
090: 0000 FEFE FFFE 0000 FE00 0000 0000 0000 0000 0000
100: E26F 2542 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0100 0000 0002
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 EAB0
130: 2542 EAB0 2542 2020 0002 0002 0002 008A 3C06 3C0A
140: 0000 07C6 0100 0800 1314 0002 0002 0080 0000 0000
150: 00A2 0202 0000 0404 0000 0000 0000 0000 1200 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 77A5

----------------------------------------------------------------------------
(2) KINGSTON SH103S3120G
----------------------------------------------------------------------------
Model : KINGSTON SH103S3120G
Firmware : 501ABBF0
Serial Number : 50026B7226010529
Disk Size : 120,0 GB (8,4/120,0/120,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 234441648
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ACS-2 Revision 3
Transfer Mode : SATA/600
Power On Hours : 929 hod.
Power On Count : 434 krát
Host Reads : 1263 GB
Host Writes : 1208 GB
Temparature : 31 C (87 F)
Health Status : Dobrý (100 %)
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 00FEh [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr Raw Values (7) Attribute Name
01 112 112 _50 000000031AD0AD Raw Read Error Rate
05 100 100 __3 00000000000000 Retired Block Count
09 __0 __0 __0 22FEE8000003A1 Power-on Hours
0C 100 100 __0 000000000001B2 Power Cycle Count
AB __0 __0 __0 00000000000000 Program Fail Count
AC __0 __0 __0 00000000000000 Erase Fail Count
AE __0 __0 __0 0000000000003D Unexpected Power Loss Count
B1 __0 __0 __0 00000000000001 Wear Range Delta
B5 __0 __0 __0 00000000000000 Program Fail Count
B6 __0 __0 __0 00000000000000 Erase Fail Count
BB 100 100 __0 00000000000000 Reported Uncorrectable Errors
C2 _31 _79 __0 000014004F001F Temperature
C3 120 120 __0 000000031AD0AD On-the-Fly ECC Uncorrectable Error Count
C4 100 100 __3 00000000000000 Reallocation Event Count
C9 120 120 __0 000000031AD0AD Uncorrectable Soft Read Error Rate
CC 120 120 __0 000000031AD0AD Soft ECC Correction Rate
E6 100 100 __0 00000000000064 Life Curve Status
E7 100 100 _10 00000000000000 SSD Life Left
E9 __0 __0 __0 000000000004CE Specifický pro výrobce
EA __0 __0 __0 000000000004B8 Specifický pro výrobce
F1 __0 __0 __0 000000000004B8 Lifetime Writes from Host
F2 __0 __0 __0 000000000004EF Lifetime Reads from Host

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3530 3032 3642 3732 3236 3035 3035 3239 2020 2020
020: 0000 0000 0004 3530 3141 4630 4630 4B49 4E47 5354
030: 4F4E 2053 4831 3033 5333 3047 3047 2020 2020 2020
040: 2020 2020 2020 2020 2020 0020 0020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: 4BB0 0DF9 0000 0007 0003 0078 0078 0078 0078 4200
070: 0000 0000 0000 0000 0000 C70E C70E 0004 004C 0040
080: 01FC 0110 746B 7469 6163 B449 B449 6163 207F 0001
090: 0000 00FE FFFE 0000 0000 0000 0000 0000 0000 0000
100: 4BB0 0DF9 0000 0000 0000 4000 4000 0000 5002 6B72
110: 2601 0529 0000 0000 0000 0000 0000 0000 0000 401A
120: 4018 0000 0000 0000 0000 0000 0000 0000 0009 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0001 0001 0000 0000 4000
210: 0000 0000 0100 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 15A5

----------------------------------------------------------------------------
(3) Hitachi HDT725050VLA360
----------------------------------------------------------------------------
Model : Hitachi HDT725050VLA360
Firmware : V56OA7EA
Serial Number : VFK401R413M1AK
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 15315 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 1
Transfer Mode : SATA/300
Power On Hours : 22781 hod.
Power On Count : 3388 krát
Temparature : 42 C (107 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _93 _93 _16 00000013000C Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 104 104 _24 000901DE01DF Čas na roztočení ploten
04 _99 _99 __0 0000000015F8 Počet spuštění/zastavení
05 100 100 __5 00000000000C Počet přemapovaných sektorů
07 _98 _98 _67 000000020000 Počet chybných hledání
08 100 100 _20 000000000000 Čas potřebný na vyhledání
09 _97 _97 __0 0000000058FD Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 000000000D3C Počet cyklů zapnutí zařízení
C0 _95 _95 __0 00000000192A Počet vypnutí disku
C1 _95 _95 __0 00000000192A Počet cyklů načítání/vymazání
C2 142 142 __0 003A000F002A Teplota
C4 100 100 __0 00000000000E Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000006 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 5646 4B34 5234 5234 3133 4D31 414B
020: 0003 77A7 0034 5635 364F 4541 4541 4869 7461 6368
030: 6920 4844 5437 3235 3035 4C41 4C41 3336 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0706 0706 0000 005E 0040
080: 00FC 001A 346B 7FE9 4773 BC01 BC01 4763 207F 0060
090: 0000 0000 FFFE 0000 80FE 00CA 00CA 00F9 2710 0000
100: 6030 3A38 0000 0000 00CA 0000 0000 5A87 5000 CCA3
110: 13CF BC1A 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 000E 0000 2982 0DB1 FE20 4000 4000 0404 0000 0000
140: 0000 5DFF 459D 320A 0400 3F7F 3F7F 00C0 0040 4800
150: 8000 0000 364E 4237 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003F 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 08A5

#4 Příspěvek od **Márty84** » 22 úno 2014 19:46

Zvlast tento disk (3) Hitachi HDT725050VLA360 na tom neni dobre.

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

pet368 · #5 Příspěvek od **pet368** » 22 úno 2014 21:14

Extras.txt

OTL Extras logfile created on: 22.2.2014 19:49:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = H:\Users\Honza\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 3,74 Gb Available Physical Memory | 62,40% Memory free
12,00 Gb Paging File | 9,33 Gb Available in Paging File | 77,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = H: | %SystemRoot% = H:\Windows | %ProgramFiles% = H:\Program Files (x86)
Drive C: | 97,66 Gb Total Space | 0,89 Gb Free Space | 0,92% Space Free | Partition Type: NTFS
Drive D: | 298,08 Gb Total Space | 39,62 Gb Free Space | 13,29% Space Free | Partition Type: NTFS
Drive E: | 368,10 Gb Total Space | 39,49 Gb Free Space | 10,73% Space Free | Partition Type: NTFS
Drive H: | 111,79 Gb Total Space | 20,78 Gb Free Space | 18,58% Space Free | Partition Type: NTFS

Computer Name: HONZA-PC | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- H:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- H:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-4183335329-3543758517-1907008434-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "H:\Windows\System32\rundll32.exe" "H:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "H:\Windows\System32\rundll32.exe" "H:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "H:\Users\Honza\AppData\Roaming\File Scout\filescout.exe" /open "%1" ()
Directory [AddToPlaylistVLC] -- "H:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "H:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "H:\Users\Honza\AppData\Roaming\File Scout\filescout.exe" /open "%1" ()
Directory [AddToPlaylistVLC] -- "H:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "H:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A28D340-5D18-49FF-ADA5-EC06C65B62F2}" = rport=138 | protocol=17 | dir=out | app=system |
"{0B04A55C-3BEB-458E-98BB-B5ECBB3EF151}" = lport=5910 | protocol=6 | dir=in | name=vnc5910 |
"{0C7A9644-4BA2-41A7-84D3-6B255F355CF5}" = rport=10243 | protocol=6 | dir=out | app=system |
"{0FABC660-278F-4240-998E-432781775ACB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{109F73FB-8D54-4BCE-A215-3B0ED86F9C89}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1825B74A-2993-4AD7-8176-2B86D23BF075}" = lport=445 | protocol=6 | dir=in | app=system |
"{2A08CAC6-5524-4E0F-AEE9-E3351F13EB7A}" = lport=138 | protocol=17 | dir=in | app=system |
"{308A74BF-A814-4621-B883-1148000DF2CD}" = lport=10243 | protocol=6 | dir=in | app=system |
"{38B7BCD0-59BC-4767-AFC7-061F0EA0DA76}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4A140BE0-7A46-42A4-BC6B-DA43664DA066}" = lport=139 | protocol=6 | dir=in | app=system |
"{4E37A531-9E81-4EFD-913D-9AB61048349C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{5B3969AA-489E-4BBA-9A35-BB19EAB96450}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7898A846-A760-45EA-94B2-3BE827712CDC}" = lport=6004 | protocol=17 | dir=in | app=h:\program files\microsoft office\office15\outlook.exe |
"{8FE1C56D-D7F3-4D9E-BD48-3A9266A120E9}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{92DCCAFF-E415-4A43-BD1A-54680104D4A1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A6BF7FB8-6FB5-4443-8DEA-D734AD77511A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A9351A3D-DB4F-4AF9-A9D2-1219B8AD4387}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AA0A9EBF-A223-4F25-9C9C-10184355E3F1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AA437D7D-05EF-4A43-945B-F174B635A17A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B4654B83-EFAB-48BA-9AA7-24E6E07DCEE0}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C671E746-3D56-48E5-8E66-DCC6435DF8D5}" = rport=445 | protocol=6 | dir=out | app=system |
"{D6067307-DE69-46A7-BD9F-1094F6920354}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D7FFB63A-838C-4733-A5A6-BAD444300BC7}" = lport=137 | protocol=17 | dir=in | app=system |
"{D8A5C54D-5012-431C-8915-EB93FC2790CD}" = rport=137 | protocol=17 | dir=out | app=system |
"{E58DC5A4-08D4-40EA-B821-2328F871E562}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F0C81AEF-398B-4B84-851F-9E06B2708229}" = rport=139 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00040332-B49F-42F3-8B91-726B6CA86D76}" = protocol=6 | dir=in | app=h:\programdata\battle.net\agent\agent.2328\agent.exe |
"{06A8FAB3-AD05-4EBB-A441-8BD800D55125}" = dir=in | app=h:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{08309681-F5A3-4FF8-8631-ADB1001703BE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0E0D43EE-553C-4024-99EE-029B11897EE1}" = protocol=17 | dir=in | app=h:\users\honza\appdata\local\crossloop\vncviewer.exe |
"{1043E422-18C6-43A1-BA99-0BDD6D59A06D}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{146E24B5-493B-4FD9-A304-44EB824B4C0E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{17F16919-0FCD-456E-AFDC-8B912560F494}" = protocol=17 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{18A843BA-0E5F-49BD-B8F2-47D11F283F82}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1CA48C17-374F-4BD7-A2B9-89534CCA5A98}" = protocol=17 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{1EAC77BF-E5A9-4263-89EB-15887F7CF3B6}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2102DD0E-A4BB-44AC-B37D-00E421771151}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{254F5776-9AF0-4634-871B-DC5D628D976E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{2CBB842C-2703-490C-B040-8E8EBE37963E}" = protocol=6 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{2F9E9095-3DFD-4056-B8CD-459978612F8F}" = protocol=6 | dir=in | app=h:\programdata\battle.net\agent\agent.2045\agent.exe |
"{3014D862-49BE-43E6-8015-75F7DACF37AD}" = protocol=6 | dir=in | app=h:\users\honza\appdata\local\crossloop\tvnserver.exe |
"{4529347B-5C07-4D2F-8BF6-F00375D08D0A}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{49DBCC03-9E84-47C4-BC06-38B8FA081E70}" = protocol=17 | dir=in | app=h:\programdata\battle.net\agent\agent.2045\agent.exe |
"{4DFC98AD-0C73-4FE3-BB81-54C297DF4E38}" = protocol=17 | dir=in | app=h:\programdata\battle.net\agent\agent.2328\agent.exe |
"{4E1C0390-7CDE-4300-A8ED-B91F11C79461}" = protocol=6 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\panprocess.exe |
"{57038CCB-37FD-4352-896F-316E387DED9E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{570666B5-147D-435A-9444-869406AFC0AB}" = protocol=17 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\panprocess.exe |
"{60277AEB-5846-4C3C-BC3E-266A988AAA5C}" = protocol=6 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\panprocess.exe |
"{6158C53B-5794-4D5B-B0C5-7997C52B2414}" = protocol=6 | dir=in | app=h:\users\honza\appdata\local\crossloop\vncviewer.exe |
"{61980F53-B5D1-4ADB-AFDD-F13C19A566F1}" = protocol=17 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\panprocess.exe |
"{61C0102E-B3FF-4057-9D53-84E5D2A3218B}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{6B7623E0-B00C-487D-9433-DBAC2FED2BE8}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{6D535529-6369-4B3C-A67D-799CA0D8D1AC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{71F550CF-02A4-49E9-83A7-44ED26C37006}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{721D71C9-D610-4BBC-8A22-4436EB910D6E}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{74F5D9AF-0358-43FF-AC4F-5D93C5538DA2}" = dir=in | app=h:\users\honza\downloads\updfsetup.exe |
"{75326A55-3772-4BF6-9B02-42635C23CF8B}" = dir=in | app=h:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{760C8F3D-EAB8-43FC-A0A5-A4E57CBF1FF6}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{7FDBC55D-8F5C-464B-A72E-83C4DAD44E1B}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{81698C38-658E-41B1-8B2D-17F4E48EC4D4}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{81D62BD9-1CA9-4991-8D45-7AEAD1B1C0F5}" = dir=in | app=h:\program files (x86)\skype\phone\skype.exe |
"{853BAC3B-C68B-4561-955D-14C2C9A2B22A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{873AB675-9E96-46A1-932E-785C79A8CA2B}" = dir=in | app=h:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{89C4EB07-9203-4D2A-A051-CEDF177D0E29}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8F90F1E4-9CE4-4248-A3A9-D4D8B6CE8FFE}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{9965A3B5-D20F-45BB-A1D7-0ED1D353D72C}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{9BE6BE63-17B1-44F4-B208-95F988512C66}" = dir=in | app=h:\program files (x86)\hp\hp software update\hpwucli.exe |
"{9D8D96C8-9ED4-49F2-9ECD-23F76E48C1F1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A07A0BF4-36B4-4163-9DD1-8EB0229E6779}" = protocol=6 | dir=in | app=h:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{A14C8AD8-8D43-4751-93C6-B36F7AE2DB4C}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{AD5D0850-831A-4077-8D6A-D1D934B3A037}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B5B054C0-579C-4B3E-BACF-ABCCA951A4BF}" = dir=out | app=h:\users\honza\downloads\updfsetup.exe |
"{B9C09C4A-CCB3-4187-A123-6C419828CA45}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{BA3B427B-635A-45CA-8889-D275726D7BE3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BEC76376-CD56-4044-B35D-2AB0B6A77979}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{C1E6CFA5-AF7B-49FC-86C4-6ECA7486FBF6}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C308B2F2-609C-4FF5-9A52-BC2995E3A209}" = protocol=17 | dir=in | app=h:\users\honza\appdata\local\crossloop\tvnserver.exe |
"{D4EBFD28-668D-44CB-9E73-47864FC6787C}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{D78CD11F-0D3A-46B0-B0DC-F9CE78B3E762}" = protocol=6 | dir=out | app=system |
"{D91299CD-5C8C-46FE-9860-87883B420E9C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{DD269ED1-9E85-4B6D-9D25-FED3B0C70914}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{E129A70E-BAEF-4894-A307-36AFC87F037B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E9BEA85B-046E-4262-B6DD-D6F8E322F631}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{EBA4A5ED-FD43-44EC-99C9-E54C9C584391}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{F1A451D0-DC47-4912-AC55-1EF1F9C25E0A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F9EE1C2E-A075-4A5E-9EF2-D75E0D77BDC7}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
"{FBD88ACF-1305-433E-B7EA-22B4598D0D3B}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{FC37C34C-483B-40FC-8F75-4736EE5E30B1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FF746FBA-8C5E-472D-A881-BC666CE7A0D0}" = dir=in | app=h:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"TCP Query User{17EBDFD8-2974-491B-914F-B536873E64F7}H:\users\honza\appdata\local\crossloop\crossloopconnect.exe" = protocol=6 | dir=in | app=h:\users\honza\appdata\local\crossloop\crossloopconnect.exe |
"TCP Query User{188E9F82-AE0B-44B3-9565-8D151C349D07}H:\program files (x86)\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=h:\program files (x86)\spyware terminator\spywareterminatorupdate.exe |
"TCP Query User{222737EF-A3D3-476E-A487-72CDA07A0EE1}E:\hry\diablo iii\diablo iii.exe" = protocol=6 | dir=in | app=e:\hry\diablo iii\diablo iii.exe |
"TCP Query User{3711EC0D-AA1D-4856-AFC1-1AE0CD3B09C5}F:\easysetupassistant\tl-wr1043nd\easysetupassistant.exe" = protocol=6 | dir=in | app=f:\easysetupassistant\tl-wr1043nd\easysetupassistant.exe |
"UDP Query User{4EF1EE40-002A-4FAC-B6B0-F45AE4DEB0A3}H:\users\honza\appdata\local\crossloop\crossloopconnect.exe" = protocol=17 | dir=in | app=h:\users\honza\appdata\local\crossloop\crossloopconnect.exe |
"UDP Query User{730FC847-33F7-4628-B0E6-27B766438621}E:\hry\diablo iii\diablo iii.exe" = protocol=17 | dir=in | app=e:\hry\diablo iii\diablo iii.exe |
"UDP Query User{7DAAFBD3-DAA8-4E3D-8D1F-D49AC9CD87D3}F:\easysetupassistant\tl-wr1043nd\easysetupassistant.exe" = protocol=17 | dir=in | app=f:\easysetupassistant\tl-wr1043nd\easysetupassistant.exe |
"UDP Query User{C736587E-9463-4F39-93E2-19EC174C2381}H:\program files (x86)\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=h:\program files (x86)\spyware terminator\spywareterminatorupdate.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}" = Network64
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{308051DA-0048-7A07-FE8B-9B6EC119A9E8}" = AMD Catalyst Install Manager
"{31ABA3F2-0000-1033-0102-111D43815377}" = Autodesk ReCap
"{31ABA3F2-0010-1033-0102-111D43815377}" = Autodesk ReCap Language Pack-English
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}" = Autodesk 360
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{5783F2D7-B000-0405-0102-0060B0CE6BBA}" = AutoCAD Civil 3D 2013 – čeština (Czech)
"{5783F2D7-B000-0405-1102-0060B0CE6BBA}" = Jazykový balíček pro aplikaci AutoCAD Civil 3D 2013 – čeština (Czech)
"{5783F2D7-B000-0405-2102-0060B0CE6BBA}" = AutoCAD Civil 3D 2013 – čeština (Czech)
"{5783F2D7-D001-0000-0102-0060B0CE6BBA}" = AutoCAD 2014 – Čeština (Czech)
"{5783F2D7-D001-0405-1102-0060B0CE6BBA}" = AutoCAD 2014 Language Pack – Čeština (Czech)
"{5783F2D7-D001-0405-2102-0060B0CE6BBA}" = AutoCAD 2014 – Čeština (Czech)
"{57CF494B-615C-4BC7-8AA9-B88D7C4E8CB0}" = Autodesk Subassembly Composer on AutoCAD Civil 3D 2013 - English - Czech
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{79BF7CB8-1E09-489F-9547-DB3EE8EA3F16}" = Microsoft SQL Server Native Client
"{7FD0FD0D-AC40-A3BF-F2D4-54EFEDB0008F}" = AMD Drag and Drop Transcoding
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{86177DAE-38B1-49DD-912E-35CB703AB779}" = Microsoft SQL Server VSS Writer
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-0015-0405-1000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0016-0405-1000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0018-0405-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0019-0405-1000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-001A-0405-1000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001B-0405-1000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001F-0405-1000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-041B-1000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-0044-0405-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-0090-0405-1000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-00A1-0405-1000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00BA-0405-1000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2013
"{90150000-00E1-0405-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E2-0405-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-012B-0405-1000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{91150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5 CSY Language Pack
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A4F0DB87-3269-34FE-AFFE-4168FDFA4A22}" = Microsoft .NET Framework 4.5 CSY Language Pack
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{AEF57B06-B494-8180-AFC7-05EFB1DB2B64}" = ccc-utility64
"{B61ED343-0B14-4241-999C-490CB1A20DA4}" = HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B
"{B821CDAA-34DE-46FD-87C9-E6EE7158DB5D}" = Microsoft Image Composite Editor
"{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}" = Microsoft SQL Server 2008 Native Client
"{BD1BCEF8-5CD6-D8ED-7D36-31C2172076EA}" = AMD Media Foundation Decoders
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{ED273D26-E354-1A5B-A0D0-CB5258D43BD2}" = AMD Wireless Display v3.0
"{FCC4426F-0296-D30D-729C-E76C8E7252C7}" = AMD Accelerated Video Transcoding
"{FD349C8D-70D1-4624-AC93-4BAFE3819169}" = Autodesk® Storm and Sanitary Analysis 2013 x64 Plug-in
"0B624A43DD66DBF5CF3EDFA9741A364E688062A4" = Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 )
"AutoCAD 2014 – Čeština (Czech)" = Autodesk AutoCAD 2014 – Čeština (Czech)
"AutoCAD Civil 3D 2013 – čeština (Czech)" = AutoCAD Civil 3D 2013 – čeština (Czech)
"AutoCAD Civil 3D 2013 – čeština (Czech) SP2" = AutoCAD Civil 3D 2013 – čeština (Czech) SP2
"Autodesk ReCap" = Autodesk ReCap
"AutopanoPro3.0" = Kolor Autopano Pro 3.0
"CCleaner" = CCleaner
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Smart Web Printing" = HP Smart Web Printing 4.51
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"Office15.PROPLUSR" = Microsoft Office Professional Plus 2013
"PDF Report Writer_is1" = PDF Report Writer (novaPDF 6.4 printer)
"Shop for HP Supplies" = Shop for HP Supplies
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{046B79EE-7ED3-37A4-621A-FE297EF484C2}" = CCC Help Greek
"{0C6C3239-D579-411C-9E8C-5E8D38D90165}" = Autodesk® Storm and Sanitary Analysis 2013
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{104066F4-5897-4067-85D3-4C88B67CCF75}" = AIO_Scan
"{10CB5DDD-38E1-2EB2-F62C-C1948A99943E}" = AMD Catalyst Control Center
"{1152429F-E6F3-472B-8556-DD6DB666A31B}" = ZoneAlarm Security
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{1194740D-0DB8-A508-31BA-E722597B4516}" = Catalyst Control Center Graphics Previews Common
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{153DB567-6FF3-49AD-AC4F-86F8A3CCFDFB}" = Autodesk Design Review 2013
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{1DD1D1E9-FC96-4B17-BE0A-A5481F8B0D67}" = ArcGIS License Manager 10
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FB16E3B-3AFB-46CB-6E83-2F5A0CF4ED16}" = Catalyst Control Center Localization All
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (TRANSOFTSERVER)
"{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}" = Microsoft Visual Basic PowerPacks 10.0
"{2E3A81FB-7952-F8CB-9AD5-50544E2F4838}" = CCC Help Czech
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{4172E797-CE12-AC47-05B7-0E48BDB33E75}" = CCC Help Russian
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{4428AEE6-FA5E-2913-8D12-B410E85E11AA}" = CCC Help Spanish
"{469531E0-D4FE-46D9-9202-90053CE49CDC}" = Program Object Enabler 32bitové verze aplikace AutoCAD Civil 3D 2013 na Autodesk® Storm and Sanitary Analysis 2013 - Language Neutral
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{4FF1533E-FF2C-A04A-25DD-A8AEC6FA106B}" = CCC Help Chinese Standard
"{51BF3210-B825-4092-8E0D-66D689916E02}" = Autodesk Material Library Base Resolution Image Library 2014
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{6071CB80-DABC-B10D-F244-7F410FB3B150}" = CCC Help Polish
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{6343B6BA-F97F-B336-9ED8-FFD43776E84D}" = CCC Help Finnish
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{644E9589-F73A-49A4-AC61-A953B9DE5669}" = SketchUp Import for AutoCAD 2014
"{644F9B19-A462-499C-BF4D-300ABC2A28B1}" = Autodesk Material Library 2014
"{64665955-E1A1-4A8B-BFFA-673A95318909}" = ArcGIS Desktop 10
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6BE22EEE-C8CD-4B16-B17E-E036C00B473B}" = ZoneAlarm Firewall
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{8A470330-70B2-49AD-86AF-79885EF9898A}" = FARO LS 1.1.501.0 (64bit)
"{8D3A11D0-D925-FA0F-43F3-242E49975CD2}" = CCC Help Danish
"{8EF39A9F-6A57-9706-86A5-9312D9ED8016}" = CCC Help Portuguese
"{92352C97-C657-DB89-5F3A-E8C3789D9C89}" = CCC Help Chinese Traditional
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{95545E55-3309-1929-FF41-2908A9706742}" = CCC Help Turkish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CA5F712-9CAA-B3CB-02D3-7134DFC8801E}" = CCC Help French
"{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}" = AIO_CDB_Software
"{A128A816-FD3F-990E-DD80-E1735BD718AE}" = CCC Help Italian
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{AFC9ECA9-6A4E-1370-98F3-002B63B5AF8E}" = CCC Help Thai
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{B6E016E1-9781-4172-8A34-9548C7463366}" = RZI easyTrack 2013
"{B88F2045-CF9A-996C-1670-6F7D65F1D18A}" = CCC Help Norwegian
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BED96D0C-7743-3CE3-F7DF-A0A4475FBF2F}" = CCC Help Hungarian
"{C070121A-C8C5-4D52-9A7D-D240631BD433}" = Autodesk App Manager
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB79256B-C0E0-40C6-8EB7-BDD796203581}" = Catalyst Control Center - Branding
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{DC635845-46D3-404B-BCB1-FC4A91091AFA}" = SmartWebPrinting
"{E297492A-E114-CAE0-502E-5F36C386DD30}" = CCC Help Dutch
"{E60B8506-DDC7-433d-AF9E-999D0F543C4A}" = 2570_Help
"{E6533A85-ED92-F897-2B68-58AC3BD87F94}" = CCC Help English
"{E7112940-5F8E-4918-B9FE-251F2F8DC81F}" = AIO_CDB_ProductContext
"{E9DB5E4F-6A14-4198-8ACB-78AD5E8C38AE}" = Plex.Earth Tools 3.2 for AutoCAD 2012-2014 (Exchange Version)
"{EA7FE7AB-34AE-4e14-84C5-187E6EC0AB9B}" = 2570
"{EBAC163A-588E-1E5A-3CE8-826E9A449244}" = CCC Help Korean
"{ED65BD75-CEF3-C0C2-9E9C-FA567484FF60}" = CCC Help Japanese
"{EEB34D84-92A1-7BE3-6DB7-ABD1C4912D6B}" = Catalyst Control Center InstallProxy
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F1289D68-1C48-930F-51CF-577BDB371252}" = CCC Help Swedish
"{F3F340A5-64EC-AEEC-4BDF-DC537D390BF5}" = CCC Help German
"{F66D5732-C2A6-4f88-B8FE-AEDA10355FBD}" = 2570Trb
"{F732FEDA-7713-4428-934B-EF83B8DD65D0}" = Autodesk Featured Apps
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"ArcGIS Desktop 10" = ArcGIS Desktop 10
"ArcGIS License Manager 10" = ArcGIS License Manager 10
"Autodesk Content Service" = Autodesk Content Service
"Autodesk Design Review 2013" = Autodesk Design Review 2013
"AutoTURN 8" = AutoTURN 8
"avast" = avast! Free Antivirus
"CrossLoop_is1" = CrossLoop 2.82
"DAEMON Tools Pro" = DAEMON Tools Pro
"DiskCheckerXP" = DiskCheckerXP 6.1
"Free YouTube Download_is1" = Free YouTube Download version 3.2.12.827
"Google Chrome" = Google Chrome
"GoPro Studio" = GoPro Studio 2.0.0
"HD Tune_is1" = HD Tune 2.55
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"OpenJUMP 1.6.3 rev.3576 CORE" = OpenJUMP 1.6.3 rev.3576 CORE
"Speed Analysis 3" = Speed Analysis 3
"SpeedFan" = SpeedFan (remove only)
"The KMPlayer" = The KMPlayer (remove only)
"Transoft Solutions Civil 3D Framework1.0" = Transoft Solutions Civil 3D Framework 1.0
"Transoft Solutions License Server 1.7" = Transoft Solutions License Server 1.7
"Transoft Solutions Presentation Framework2.0" = Transoft Solutions Presentation Framework 2.0
"UNI_{VISSIM_54_B02CC8DE-A297-11DE-82EA-0019990EF7FA}_IS0_is1" = VISSIM 5.40-09 (Uni) 32 Bit
"VLC media player" = VLC media player 2.0.6
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"zonealarm" = ZoneAlarm Security Toolbar
"ZoneAlarm Free Firewall" = ZoneAlarm Free Firewall

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 12.2.2014 14:14:16 | Computer Name = Honza-PC | Source = Autodesk Content Service | ID = 0
Description = UNHANDLED EXCEPTION. Process is terminating: True. EXCEPTION: There
is a file sharing violation. A different process might be using the file. [ H:\ProgramData\Autodesk\Content
Service\Server\ContentServiceDB\Connect.MetaStore.sdf ]

Error - 12.2.2014 14:14:17 | Computer Name = Honza-PC | Source = .NET Runtime | ID = 1026
Description =

Error - 12.2.2014 14:14:17 | Computer Name = Honza-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Connect.Service.ContentService.exe, verze:
3.0.84.0, časové razítko: 0x4f280c49 Název chybujícího modulu: KERNELBASE.dll, verze:
6.1.7601.18015, časové razítko: 0x50b83c8a Kód výjimky: 0xe0434352 Posun chyby: 0x0000c41f
ID
chybujícího procesu: 0xa818 Čas spuštění chybující aplikace: 0x01cf2818a3ca5711 Cesta
k chybující aplikaci: H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
Cesta
k chybujícímu modulu: H:\Windows\syswow64\KERNELBASE.dll ID zprávy: 7bc13511-9411-11e3-ae76-000e2eae12f4

Error - 12.2.2014 14:19:31 | Computer Name = Honza-PC | Source = Autodesk Content Service | ID = 0
Description = UNHANDLED EXCEPTION. Process is terminating: True. EXCEPTION: There
is a file sharing violation. A different process might be using the file. [ H:\ProgramData\Autodesk\Content
Service\Server\ContentServiceDB\Connect.MetaStore.sdf ]

Error - 12.2.2014 14:19:31 | Computer Name = Honza-PC | Source = .NET Runtime | ID = 1026
Description =

Error - 12.2.2014 14:19:31 | Computer Name = Honza-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Connect.Service.ContentService.exe, verze:
3.0.84.0, časové razítko: 0x4f280c49 Název chybujícího modulu: KERNELBASE.dll, verze:
6.1.7601.18015, časové razítko: 0x50b83c8a Kód výjimky: 0xe0434352 Posun chyby: 0x0000c41f
ID
chybujícího procesu: 0x8918 Čas spuštění chybující aplikace: 0x01cf281e447e061e Cesta
k chybující aplikaci: H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
Cesta
k chybujícímu modulu: H:\Windows\syswow64\KERNELBASE.dll ID zprávy: 36e89ce4-9412-11e3-ae76-000e2eae12f4

Error - 22.2.2014 13:36:01 | Computer Name = Honza-PC | Source = VSS | ID = 22
Description =

Error - 22.2.2014 13:36:01 | Computer Name = Honza-PC | Source = VSS | ID = 8193
Description =

Error - 22.2.2014 13:41:03 | Computer Name = Honza-PC | Source = VSS | ID = 22
Description =

Error - 22.2.2014 13:41:03 | Computer Name = Honza-PC | Source = VSS | ID = 8193
Description =

Error - 22.2.2014 14:52:26 | Computer Name = Honza-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Spyware Terminator
Driver Filter. System Error: Systém nemůže nalézt uvedený soubor. .

[ System Events ]
Error - 12.2.2014 14:14:18 | Computer Name = Honza-PC | Source = Service Control Manager | ID = 7031
Description = Služba Autodesk Content Service byla nečekaně ukončena. Stalo se to
4 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat
službu.

Error - 12.2.2014 14:19:31 | Computer Name = Honza-PC | Source = Service Control Manager | ID = 7031
Description = Služba Autodesk Content Service byla nečekaně ukončena. Stalo se to
5 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat
službu.

Error - 21.2.2014 15:00:39 | Computer Name = Honza-PC | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk2\DR2 má chybný blok.

Error - 22.2.2014 11:12:58 | Computer Name = Honza-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (15:28:20, ?22.?2.?2014) bylo neočekávané.

Error - 22.2.2014 11:12:59 | Computer Name = Honza-PC | Source = BugCheck | ID = 1001
Description =

Error - 22.2.2014 11:58:57 | Computer Name = Honza-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (16:56:54, ?22.?2.?2014) bylo neočekávané.

Error - 22.2.2014 12:33:12 | Computer Name = Honza-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (17:31:47, ?22.?2.?2014) bylo neočekávané.

Error - 22.2.2014 13:01:08 | Computer Name = Honza-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (17:54:03, ?22.?2.?2014) bylo neočekávané.

Error - 22.2.2014 13:33:10 | Computer Name = Honza-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (18:31:46, ?22.?2.?2014) bylo neočekávané.

Error - 22.2.2014 14:22:46 | Computer Name = Honza-PC | Source = Service Control Manager | ID = 7030
Description = Služba TrueVector Internet Monitor je označena jako interaktivní služba.
Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby.
Tato služba nebude fungovat správně.

< End of report >

pet368 · #6 Příspěvek od **pet368** » 22 úno 2014 21:17

otl.txt část 1

OTL logfile created on: 22.2.2014 19:49:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = H:\Users\Honza\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 3,74 Gb Available Physical Memory | 62,40% Memory free
12,00 Gb Paging File | 9,33 Gb Available in Paging File | 77,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = H: | %SystemRoot% = H:\Windows | %ProgramFiles% = H:\Program Files (x86)
Drive C: | 97,66 Gb Total Space | 0,89 Gb Free Space | 0,92% Space Free | Partition Type: NTFS
Drive D: | 298,08 Gb Total Space | 39,62 Gb Free Space | 13,29% Space Free | Partition Type: NTFS
Drive E: | 368,10 Gb Total Space | 39,49 Gb Free Space | 10,73% Space Free | Partition Type: NTFS
Drive H: | 111,79 Gb Total Space | 20,78 Gb Free Space | 18,58% Space Free | Partition Type: NTFS

Computer Name: HONZA-PC | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.02.22 19:48:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- H:\Users\Honza\Desktop\OTL.exe
PRC - [2014.02.22 18:40:02 | 001,241,834 | ---- | M] () -- H:\Users\Honza\Desktop\adwcleaner.exe
PRC - [2014.02.20 02:03:06 | 000,859,464 | ---- | M] (Google Inc.) -- H:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014.02.16 18:10:29 | 003,767,096 | ---- | M] (AVAST Software) -- H:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.02.16 18:10:28 | 000,050,344 | ---- | M] (AVAST Software) -- H:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.01.29 20:55:08 | 002,445,816 | ---- | M] (Check Point Software Technologies LTD) -- H:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
PRC - [2014.01.29 20:21:40 | 000,074,160 | ---- | M] (Check Point Software Technologies LTD) -- H:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
PRC - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.10.15 05:38:52 | 000,050,704 | ---- | M] (Check Point Software Technologies, Ltd.) -- H:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
PRC - [2013.07.02 09:16:32 | 000,507,264 | ---- | M] (Oracle Corporation) -- H:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2012.11.13 13:08:08 | 003,825,176 | ---- | M] (Safer-Networking Ltd.) -- H:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2012.09.28 08:25:56 | 000,586,904 | ---- | M] (PandoraTV) -- H:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
PRC - [2012.09.28 08:25:54 | 000,625,304 | ---- | M] (Pandora.TV) -- H:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
PRC - [2012.06.15 14:08:32 | 001,149,912 | ---- | M] (Crystal Dew World) -- H:\Users\Honza\Downloads\DiskInfo.exe
PRC - [2012.05.01 18:21:43 | 000,446,464 | ---- | M] () -- H:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe
PRC - [2012.02.02 11:01:08 | 002,668,864 | ---- | M] (DT Soft Ltd) -- H:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2012.01.06 07:35:22 | 000,569,072 | ---- | M] (CrossLoop) -- H:\Users\Honza\AppData\Local\CrossLoop\CrossLoopService.exe
PRC - [2010.07.12 10:11:52 | 001,377,104 | R--- | M] (Flexera Software, Inc.) -- H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe
PRC - [2006.10.20 03:04:10 | 000,551,424 | R--- | M] () -- H:\Program Files (x86)\ArcGIS\License10.0\bin\ARCGIS.exe

========== Modules (No Company Name) ==========

MOD - [2014.02.22 18:40:02 | 001,241,834 | ---- | M] () -- H:\Users\Honza\Desktop\adwcleaner.exe
MOD - [2014.02.20 02:03:05 | 000,394,568 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ppgooglenaclpluginchrome.dll
MOD - [2014.02.20 02:03:04 | 013,632,840 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll
MOD - [2014.02.20 02:03:03 | 004,060,488 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\pdf.dll
MOD - [2014.02.20 02:02:59 | 000,716,616 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libglesv2.dll
MOD - [2014.02.20 02:02:58 | 000,100,168 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libegl.dll
MOD - [2014.02.20 02:02:56 | 001,647,432 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll
MOD - [2014.02.20 02:02:54 | 000,051,016 | ---- | M] () -- H:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll
MOD - [2013.11.28 07:37:39 | 019,336,120 | ---- | M] () -- H:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2012.11.13 13:06:32 | 000,158,624 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
MOD - [2012.11.13 13:06:30 | 000,108,960 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2012.11.13 13:06:28 | 000,554,400 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
MOD - [2012.11.13 13:06:28 | 000,528,288 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl
MOD - [2012.11.13 13:06:28 | 000,416,160 | ---- | M] () -- H:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl

========== Services (SafeList) ==========

SRV:64bit: - [2014.02.16 18:10:28 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- H:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013.12.06 21:52:10 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- H:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.08.05 09:13:02 | 001,471,352 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- H:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.02.21 15:21:09 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- H:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.01.29 20:55:08 | 002,445,816 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- H:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe -- (vsmon)
SRV - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- H:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.10.15 05:38:52 | 000,050,704 | ---- | M] (Check Point Software Technologies, Ltd.) [Auto | Running] -- H:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe -- (ZAPrivacyService)
SRV - [2013.08.08 13:56:27 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- H:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013.04.19 14:14:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- H:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.09.28 08:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Auto | Running] -- H:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- H:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012.05.01 18:21:43 | 000,446,464 | ---- | M] () [Auto | Running] -- H:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe -- (Transoft Solutions License Server V1.7)
SRV - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- H:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2012.01.06 07:35:22 | 000,569,072 | ---- | M] (CrossLoop) [Auto | Running] -- H:\Users\Honza\AppData\Local\CrossLoop\CrossLoopService.exe -- (CrossLoopService)
SRV - [2010.07.21 06:50:26 | 000,814,080 | ---- | M] (GlavSoft LLC.) [On_Demand | Stopped] -- H:\Users\Honza\AppData\Local\CrossLoop\tvnserver.exe -- (tvnserver)
SRV - [2010.07.12 10:11:52 | 001,377,104 | R--- | M] (Flexera Software, Inc.) [Auto | Running] -- H:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe -- (ArcGIS License Manager)
SRV - [2009.09.20 10:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- H:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- H:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.02.16 18:10:36 | 001,038,072 | ---- | M] (AVAST Software) [File_System | System | Running] -- H:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.02.16 18:10:36 | 000,421,704 | ---- | M] (AVAST Software) [File_System | System | Running] -- H:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.02.16 18:10:36 | 000,207,904 | ---- | M] () [Kernel | Boot | Running] -- H:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.02.16 18:10:36 | 000,080,184 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- H:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014.02.16 18:10:36 | 000,078,648 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- H:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013.12.06 22:52:14 | 013,207,552 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2013.12.06 22:52:14 | 013,207,552 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- H:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.12.06 21:21:44 | 000,626,176 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- H:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.11.28 07:37:41 | 000,092,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- H:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.11.28 07:37:41 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- H:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013.10.23 11:00:56 | 000,454,168 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- H:\Windows\SysNative\drivers\vsdatant.sys -- (Vsdatant)
DRV:64bit: - [2013.09.24 15:53:50 | 000,094,208 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- H:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2013.05.19 18:58:16 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- H:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- H:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.06.10 05:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- H:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 14:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- H:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 14:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- H:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- H:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = H:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: h:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: H:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: H:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: H:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: h:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: H:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: H:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: H:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: H:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: H:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013.06.06 21:24:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedanalysis03@SpeedAnalysis.com: H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com [2013.10.17 17:41:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.10.17 17:41:45 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: H:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013.06.06 21:24:18 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedanalysis03@SpeedAnalysis.com: H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com [2013.10.17 17:41:45 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.10.17 17:41:45 | 000,000,000 | ---D | M]

[2013.10.17 17:41:44 | 000,000,000 | ---D | M] (No name found) -- H:\Users\Honza\AppData\Roaming\Mozilla\Extensions
[2013.10.17 17:41:45 | 000,000,000 | ---D | M] (Speed Analysis 3) -- H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com
[2013.10.17 17:41:45 | 000,000,000 | ---D | M] (Zula Games) -- H:\Users\Honza\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com
[2014.02.22 19:21:02 | 000,000,000 | ---D | M] (No name found) -- H:\Program Files (x86)\Mozilla Firefox\extensions

========== Chrome ==========

CHR - default_search_provider: Search By ZoneAlarm (Enabled)
CHR - default_search_provider: search_url = http://search.zonealarm.com/search?src= ... tsId=&ver=&
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://search.zonealarm.com/?src=hp&tbi ... tsId=&ver=&
CHR - plugin: Error reading preferences file
CHR - Extension: Zula Games = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn\3.0.0.0_0\
CHR - Extension: ZoneAlarm Chrome Toolbar = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdcapepedmpopjkmdbjnmmmfgllnfek\1.0_0\
CHR - Extension: ZoneAlarm Chrome Toolbar = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdcapepedmpopjkmdbjnmmmfgllnfek\1.0_1\
CHR - Extension: Speed Analysis 3 = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj\3.0.0.0_0\
CHR - Extension: DVDVideoSoft = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0\
CHR - Extension: PenÄ›Ĺľenka Google = H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\

O1 HOSTS File: ([2014.02.19 08:03:02 | 000,449,438 | R--- | M]) - H:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 15429 more lines...
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Speed Analysis 3) - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - H:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll (SpeedAnalysis.com)
O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Speed Analysis 3) - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - H:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll (SpeedAnalysis.com)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - H:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - H:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [SpywareTerminatorShield] H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe File not found
O4:64bit: - HKLM..\Run: [SpywareTerminatorUpdater] H:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe File not found
O4 - HKLM..\Run: [APSDaemon] H:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] H:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [StartCCC] H:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [ZoneAlarm] H:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O4 - HKU\.DEFAULT..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.)
O4 - HKU\S-1-5-18..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] H:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] H:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000..\Run: [Autodesk Sync] H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.)
O4 - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000..\Run: [DAEMON Tools Pro Agent] H:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] H:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 3
O7 - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-4183335329-3543758517-1907008434-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O8:64bit: - Extra context menu item: Free YouTube Download - H:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube Download - H:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - H:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FF238C01-B3C2-4B54-B3E9-33DC564B6B3A}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - H:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (H:\Windows\system32\userinit.exe) - H:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - H:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - H:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.11.07 16:39:25 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2012.09.08 12:35:29 | 000,000,000 | ---D | M] - D:\Autocad 3ds Max Design 2013 -- [ NTFS ]
O32 - AutoRun File - [2012.09.07 20:48:05 | 000,000,000 | ---D | M] - D:\Autocad Civil 3D 2013 -- [ NTFS ]
O33 - MountPoints2\{e86f5476-c0a6-11e2-80c5-000e2eae12f4}\Shell - "" = AutoRun
O33 - MountPoints2\{e86f5476-c0a6-11e2-80c5-000e2eae12f4}\Shell\AutoRun\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{e86f5476-c0a6-11e2-80c5-000e2eae12f4}\Shell\configure\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{e86f5476-c0a6-11e2-80c5-000e2eae12f4}\Shell\install\command - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - H:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - H:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.CFHD - CFHD.dll (CineForm Inc.)
Drivers32: msacm.l3acm - H:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: VIDC.CFHD - H:\Windows\SysWow64\CFHD.dll (CineForm Inc.)
Drivers32: vidc.cvid - H:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to H:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.02.22 19:48:08 | 000,602,112 | ---- | C] (OldTimer Tools) -- H:\Users\Honza\Desktop\OTL.exe
[2014.02.22 19:21:56 | 000,000,000 | ---D | C] -- H:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
[2014.02.22 19:21:07 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\Check Point Software Technologies LTD
[2014.02.22 19:21:02 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\Mozilla Firefox
[2014.02.22 19:21:02 | 000,000,000 | ---D | C] -- H:\Users\Honza\AppData\Roaming\Check Point Software Technologies LTD
[2014.02.22 19:20:57 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\CheckPoint
[2014.02.22 19:20:24 | 000,000,000 | ---D | C] -- H:\ProgramData\CheckPoint
[2014.02.22 18:44:58 | 000,000,000 | ---D | C] -- H:\AdwCleaner
[2014.02.22 18:35:32 | 000,000,000 | ---D | C] -- H:\Users\Honza\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DiskCheckerXP
[2014.02.22 18:35:32 | 000,000,000 | ---D | C] -- H:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCheckerXP
[2014.02.22 18:35:32 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\DiskCheckerXP
[2014.02.22 18:29:29 | 000,000,000 | ---D | C] -- H:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
[2014.02.22 18:29:29 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\HD Tune
[2014.02.22 18:11:07 | 000,000,000 | ---D | C] -- H:\Program Files\trend micro
[2014.02.22 18:11:06 | 000,000,000 | ---D | C] -- H:\rsit
[2014.02.16 18:11:01 | 000,080,184 | ---- | C] (AVAST Software) -- H:\Windows\SysNative\drivers\aswStm.sys
[2014.02.08 13:33:54 | 000,000,000 | ---D | C] -- H:\Users\Honza\Desktop\Projekt - ČR-SK_OD DANČI VŠE
[2014.02.07 16:51:21 | 000,000,000 | ---D | C] -- H:\ProgramData\ATI
[2014.02.07 16:44:09 | 000,000,000 | ---D | C] -- H:\Program Files (x86)\AMD AVT
[2014.02.07 16:43:07 | 000,000,000 | ---D | C] -- H:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2014.02.07 16:41:23 | 000,000,000 | ---D | C] -- H:\Program Files\AMD
[2014.02.07 16:31:42 | 000,000,000 | ---D | C] -- H:\ProgramData\Package Cache
[2014.02.07 16:07:44 | 000,000,000 | ---D | C] -- H:\Users\Honza\AppData\Roaming\AVAST Software

========== Files - Modified Within 30 Days ==========

[2014.02.22 19:52:43 | 000,000,512 | ---- | M] () -- H:\PhysicalMBR.bin
[2014.02.22 19:52:41 | 000,000,946 | ---- | M] () -- H:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.02.22 19:48:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- H:\Users\Honza\Desktop\OTL.exe
[2014.02.22 19:46:34 | 000,000,950 | ---- | M] () -- H:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.02.22 19:44:00 | 000,000,914 | ---- | M] () -- H:\Windows\tasks\Adobe Flash Player Updater.job
[2014.02.22 19:24:10 | 000,417,513 | ---- | M] () -- H:\Windows\SysNative\drivers\vsconfig.xml
[2014.02.22 19:21:56 | 000,000,762 | ---- | M] () -- H:\Users\Public\Desktop\ZoneAlarm Security.lnk
[2014.02.22 18:40:02 | 001,241,834 | ---- | M] () -- H:\Users\Honza\Desktop\adwcleaner.exe
[2014.02.22 18:39:51 | 001,723,676 | ---- | M] () -- H:\Windows\SysNative\PerfStringBackup.INI
[2014.02.22 18:39:51 | 000,718,468 | ---- | M] () -- H:\Windows\SysNative\perfh005.dat
[2014.02.22 18:39:51 | 000,703,542 | ---- | M] () -- H:\Windows\SysNative\perfh009.dat
[2014.02.22 18:39:51 | 000,160,330 | ---- | M] () -- H:\Windows\SysNative\perfc005.dat
[2014.02.22 18:39:51 | 000,140,528 | ---- | M] () -- H:\Windows\SysNative\perfc009.dat
[2014.02.22 18:38:56 | 000,019,792 | -H-- | M] () -- H:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.02.22 18:38:56 | 000,019,792 | -H-- | M] () -- H:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.02.22 18:35:33 | 000,001,052 | ---- | M] () -- H:\Users\Honza\Desktop\DiskCheckerXP.lnk
[2014.02.22 18:33:09 | 000,067,584 | --S- | M] () -- H:\Windows\bootstat.dat
[2014.02.22 18:33:06 | 536,518,655 | -HS- | M] () -- H:\hiberfil.sys
[2014.02.22 18:29:29 | 000,000,936 | ---- | M] () -- H:\Users\Honza\Desktop\HD Tune.lnk
[2014.02.22 17:38:29 | 000,051,188 | ---- | M] () -- H:\Users\Honza\Documents\cc_20140222_173802.reg
[2014.02.21 15:21:07 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- H:\Windows\SysWow64\FlashPlayerApp.exe
[2014.02.21 15:21:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- H:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.02.19 08:03:02 | 000,449,438 | R--- | M] () -- H:\Windows\SysNative\drivers\etc\hosts
[2014.02.16 18:11:19 | 000,001,972 | ---- | M] () -- H:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014.02.16 18:10:36 | 001,038,072 | ---- | M] (AVAST Software) -- H:\Windows\SysNative\drivers\aswSnx.sys
[2014.02.16 18:10:36 | 000,421,704 | ---- | M] (AVAST Software) -- H:\Windows\SysNative\drivers\aswSP.sys
[2014.02.16 18:10:36 | 000,334,136 | ---- | M] (AVAST Software) -- H:\Windows\SysNative\aswBoot.exe
[2014.02.16 18:10:36 | 000,207,904 | ---- | M] () -- H:\Windows\SysNative\drivers\aswVmm.sys
[2014.02.16 18:10:36 | 000,080,184 | ---- | M] (AVAST Software) -- H:\Windows\SysNative\drivers\aswStm.sys
[2014.02.16 18:10:36 | 000,078,648 | ---- | M] (AVAST Software) -- H:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.02.16 18:10:35 | 000,043,152 | ---- | M] (AVAST Software) -- H:\Windows\avastSS.scr
[2014.02.07 16:38:52 | 001,697,710 | ---- | M] () -- H:\Windows\SysWow64\PerfStringBackup.INI

========== Files Created - No Company Name ==========

[2014.02.22 19:52:43 | 000,000,512 | ---- | C] () -- H:\PhysicalMBR.bin
[2014.02.22 19:22:23 | 000,417,513 | ---- | C] () -- H:\Windows\SysNative\drivers\vsconfig.xml
[2014.02.22 19:21:56 | 000,000,762 | ---- | C] () -- H:\Users\Public\Desktop\ZoneAlarm Security.lnk
[2014.02.22 18:39:35 | 001,241,834 | ---- | C] () -- H:\Users\Honza\Desktop\adwcleaner.exe
[2014.02.22 18:35:33 | 000,001,052 | ---- | C] () -- H:\Users\Honza\Desktop\DiskCheckerXP.lnk
[2014.02.22 18:29:29 | 000,000,936 | ---- | C] () -- H:\Users\Honza\Desktop\HD Tune.lnk
[2014.02.22 17:38:22 | 000,051,188 | ---- | C] () -- H:\Users\Honza\Documents\cc_20140222_173802.reg
[2013.12.06 22:38:38 | 000,995,342 | ---- | C] () -- H:\Windows\SysWow64\amdocl_as32.exe
[2013.12.06 22:38:38 | 000,798,734 | ---- | C] () -- H:\Windows\SysWow64\amdocl_ld32.exe
[2013.12.06 16:44:26 | 000,038,912 | ---- | C] () -- H:\Windows\SysWow64\kdbsdk32.dll
[2013.06.06 21:45:07 | 000,242,419 | ---- | C] () -- H:\Windows\hpoins19.dat.temp
[2013.06.06 21:45:07 | 000,013,898 | ---- | C] () -- H:\Windows\hpomdl19.dat.temp
[2013.06.06 21:14:49 | 000,241,901 | ---- | C] () -- H:\Windows\hpoins19.dat
[2013.06.06 21:14:49 | 000,013,898 | ---- | C] () -- H:\Windows\hpomdl19.dat
[2013.05.19 21:27:55 | 001,697,710 | ---- | C] () -- H:\Windows\SysWow64\PerfStringBackup.INI
[2013.05.19 18:03:46 | 000,000,017 | ---- | C] () -- H:\Users\Honza\AppData\Local\resmon.resmoncfg
[2013.05.19 17:47:27 | 000,000,000 | ---- | C] () -- H:\Windows\ativpsrm.bin
[2013.04.30 03:37:40 | 000,204,952 | ---- | C] () -- H:\Windows\SysWow64\ativvsvl.dat
[2013.04.30 03:37:40 | 000,157,144 | ---- | C] () -- H:\Windows\SysWow64\ativvsva.dat

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- H:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = H:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = H:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = H:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013.07.28 17:13:36 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\AlawarEntertainment
[2013.08.28 17:39:35 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Autodesk
[2014.02.07 16:07:44 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\AVAST Software
[2014.02.22 19:21:02 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Check Point Software Technologies LTD
[2013.06.06 20:06:48 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DAEMON Tools Pro
[2013.09.01 18:40:30 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DVDVideoSoft
[2013.09.01 18:40:26 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DVDVideoSoftIEHelpers
[2013.08.08 14:35:19 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\ESRI
[2013.10.17 17:40:28 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\File Scout
[2013.05.19 18:48:54 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\GHISLER
[2013.10.16 20:12:05 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\GoPro
[2013.10.09 17:53:28 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\RZI
[2013.10.29 18:15:56 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Sony
[2013.10.17 17:41:43 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\SpeedAnalysis3
[2013.10.17 17:41:44 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\zulagames

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- H:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,019,410 | ---- | C] () -- H:\Windows\Tasks\SCHEDLGU.TXT
[2013.05.19 18:15:11 | 000,000,946 | ---- | C] () -- H:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.05.19 18:15:11 | 000,000,950 | ---- | C] () -- H:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.05.19 18:47:37 | 000,000,914 | ---- | C] () -- H:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- H:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- H:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- H:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- H:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- H:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- H:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- H:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- H:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- H:\Windows\SysNative\autochk.exe
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- H:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- H:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- H:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- H:\Windows\SysWOW64\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- H:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- H:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- H:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- H:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- H:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- H:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- H:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- H:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- H:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2010.11.20 14:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2012.06.02 06:32:25 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=456107D69D4EE850A559434F19EFEE65 -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_d2beeccacd6d6c07\cryptsvc.dll
[2012.06.04 08:52:35 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=7E7D2DACF65D750D466F36BD3D09AE20 -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_d4ab184aca903d4f\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- H:\Windows\SysWOW64\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- H:\Windows\SysNative\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_d3fc6569b18d7211\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2012.06.02 06:25:12 | 000,182,272 | ---- | M] (Microsoft Corporation) MD5=BAF19B633933A9FB4883D27D66C39E9A -- H:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_d22a7e2db457eb07\cryptsvc.dll
[2012.06.02 05:41:59 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=EA8C26ECF1656D9647EF044F115EC6DA -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_76a05147150ffad1\cryptsvc.dll
[2012.06.02 05:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=F2FDE6C8DBAAD44CC58D1E07E4AF4EED -- H:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_760be2a9fbfa79d1\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- H:\Windows\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- H:\Windows\SysWOW64\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- H:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- H:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- H:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- H:\Windows\SysNative\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- H:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTORV.SYS >
[2010.11.20 14:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- H:\Windows\SysNative\drivers\iaStorV.sys
[2010.11.20 14:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- H:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 14:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- H:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- H:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- H:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- H:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- H:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- H:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 07:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_028b374176436a30\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_02756f8b7653d554\lsass.exe
[2012.06.04 08:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2012.06.02 06:30:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=BF63CE11A25F3509129888710D5111FC -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_0309de288f695654\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- H:\Windows\SysNative\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe
[2011.11.17 07:42:52 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=D21BD47E528CD62E79311FB5DF0150E6 -- H:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_02bb2a0a8fa4d398\lsass.exe

< MD5 for: NDIS.SYS >
[2010.11.20 14:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- H:\Windows\SysNative\drivers\ndis.sys
[2010.11.20 14:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- H:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- H:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- H:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010.11.20 14:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- H:\Windows\SysNative\netlogon.dll
[2010.11.20 14:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- H:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- H:\Windows\SysWOW64\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- H:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- H:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- H:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2010.11.20 14:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- H:\Windows\SysNative\drivers\nvraid.sys
[2010.11.20 14:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- H:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 14:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- H:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- H:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2010.11.20 14:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- H:\Windows\SysNative\drivers\nvstor.sys
[2010.11.20 14:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- H:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 14:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- H:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- H:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- H:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- H:\Windows\SysWOW64\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- H:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- H:\Windows\SysNative\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- H:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- H:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2013.03.19 03:57:17 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=498E2A20E145199709CD100CDBA8603D -- H:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_0a9a7b3b492b4d05\smss.exe
[2013.03.19 04:20:12 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=7180204786A9DED8723B2D8CF3CDD388 -- H:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.21490_none_08a94e494c0cfd0a\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- H:\Windows\SysNative\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- H:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_0a5f8ec22fd235a9\smss.exe
[2013.03.19 04:19:03 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=FA64733BD65F52712F0545F56FDB4BE6 -- H:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.17273_none_0838504e32dc743c\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- H:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- H:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- H:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- H:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010.11.20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2013.01.03 06:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- H:\Windows\SysNative\drivers\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- H:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- H:\Windows\SysWOW64\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- H:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- H:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- H:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- H:\Windows\SysNative\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- H:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- H:\Windows\SysNative\winlogon.exe
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- H:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- H:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- H:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- H:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.20 14:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- H:\Windows\SysNative\ws2_32.dll
[2010.11.20 14:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- H:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- H:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- H:\Windows\SysWOW64\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- H:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- H:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[2 H:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> H:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[8 H:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> H:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[13 H:\Windows\Temp\*.tmp files -> H:\Windows\Temp\*.tmp -> ]
[1 H:\Windows\twain_32\*.tmp files -> H:\Windows\twain_32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2009.09.11 16:22:34 | 000,592,208 | ---- | M] (Microsoft Corporation) -- H:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

pet368 · #7 Příspěvek od **pet368** » 22 úno 2014 21:18

otl.txt - část 2

< %APPDATA%\*. >
[2013.06.05 18:29:39 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Adobe
[2013.07.28 17:13:36 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\AlawarEntertainment
[2013.10.17 06:06:19 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Apple Computer
[2013.11.15 08:18:00 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\ATI
[2013.08.28 17:39:35 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Autodesk
[2014.02.07 16:07:44 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\AVAST Software
[2014.02.22 19:21:02 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Check Point Software Technologies LTD
[2013.06.06 20:06:48 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DAEMON Tools Pro
[2013.09.01 18:40:30 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DVDVideoSoft
[2013.09.01 18:40:26 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\DVDVideoSoftIEHelpers
[2013.08.08 14:35:19 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\ESRI
[2013.10.17 17:40:28 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\File Scout
[2013.05.19 18:48:54 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\GHISLER
[2013.10.16 20:12:05 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\GoPro
[2013.06.06 21:49:20 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\HP
[2013.05.19 17:52:37 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Identities
[2013.05.19 19:26:18 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Macromedia
[2009.07.14 16:36:38 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Media Center Programs
[2013.08.08 14:35:49 | 000,000,000 | --SD | M] -- H:\Users\Honza\AppData\Roaming\Microsoft
[2013.10.17 17:41:44 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Mozilla
[2013.10.09 17:53:28 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\RZI
[2013.07.12 22:38:15 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Skype
[2013.10.29 18:15:56 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\Sony
[2013.10.17 17:41:43 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\SpeedAnalysis3
[2013.08.12 13:15:23 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\UltraVNC
[2013.11.09 22:20:03 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\vlc
[2013.05.19 18:49:19 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\WinRAR
[2013.10.17 17:41:44 | 000,000,000 | ---D | M] -- H:\Users\Honza\AppData\Roaming\zulagames

< %APPDATA%\*.exe /s >
[2013.09.01 18:38:45 | 001,089,608 | ---- | M] (DVDVideoSoft Ltd. ) -- H:\Users\Honza\AppData\Roaming\DVDVideoSoft\FreeYouTubeDownload.exe
[2013.02.27 15:32:38 | 000,259,584 | ---- | M] () -- H:\Users\Honza\AppData\Roaming\File Scout\filescout.exe
[2013.10.17 17:40:28 | 000,062,902 | ---- | M] () -- H:\Users\Honza\AppData\Roaming\File Scout\uninst.exe
[2013.08.05 09:16:22 | 000,026,622 | R--- | M] () -- H:\Users\Honza\AppData\Roaming\Microsoft\Installer\{644E9589-F73A-49A4-AC61-A953B9DE5669}\ARPPRODUCTICON.EXE
[2013.08.05 09:17:02 | 000,026,622 | R--- | M] () -- H:\Users\Honza\AppData\Roaming\Microsoft\Installer\{C070121A-C8C5-4D52-9A7D-D240631BD433}\ARPPRODUCTICON.EXE
[2013.08.05 09:17:05 | 000,026,622 | R--- | M] () -- H:\Users\Honza\AppData\Roaming\Microsoft\Installer\{F732FEDA-7713-4428-934B-EF83B8DD65D0}\ARPPRODUCTICON.EXE
[2013.10.04 13:30:20 | 000,901,120 | ---- | M] () -- H:\Users\Honza\AppData\Roaming\SpeedAnalysis3\install_helper.exe
[2013.10.04 13:30:20 | 000,901,120 | ---- | M] () -- H:\Users\Honza\AppData\Roaming\zulagames\install_helper.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.02.21 15:21:07 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- H:\Windows\system32\FlashPlayerApp.exe
[2014.02.21 15:21:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- H:\Windows\system32\FlashPlayerCPLApp.cpl

< %SYSTEMDRIVE%\*.exe >
[2009.09.11 16:22:34 | 000,592,208 | ---- | M] (Microsoft Corporation) -- H:\install.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Pro Agent" = "H:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun -- [2012.02.02 11:01:04 | 003,034,432 | ---- | M] (DT Soft Ltd)
"Autodesk Sync" = H:\Program Files\Autodesk\Autodesk Sync\AdSync.exe -- [2013.08.12 04:30:00 | 001,317,256 | ---- | M] (Autodesk, Inc.)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.02.22 19:52:43 | 000,000,512 | ---- | M] () MD5=ED355F7BB9FD1F214DE7BA4141275D77 -- H:\PhysicalMBR.bin

< >

< *crack* /s >
[2001.08.14 18:31:08 | 000,030,054 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\Inventor Server\Textures\surfaces\Cracks.bmp
[2009.04.05 09:09:20 | 000,114,862 | ---- | M] () -- \Python26\ArcGIS10.0\Lib\site-packages\numpy\f2py\crackfortran.py
[2009.07.14 12:45:44 | 000,080,711 | ---- | M] () -- \Python26\ArcGIS10.0\Lib\site-packages\numpy\f2py\crackfortran.pyc
[2009.07.14 12:45:46 | 000,080,554 | ---- | M] () -- \Python26\ArcGIS10.0\Lib\site-packages\numpy\f2py\crackfortran.pyo

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2010.05.19 12:14:34 | 000,122,880 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\BasicRasterSdeLoader.dll
[2010.05.19 12:32:00 | 000,169,984 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\NetworkLoader.dll
[2010.05.19 13:58:32 | 000,104,960 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\ObjectLoader.dll
[2010.05.19 13:58:32 | 000,430,080 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\ObjectLoaderUI.dll
[2010.05.19 12:14:26 | 000,095,232 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\RasterLoader.dll
[2010.05.19 13:41:24 | 000,062,976 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Bin\RasterSdeLoader.dll
[2010.04.21 08:16:46 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Documentation\install_guides\ArcGIS_Desktop\includes\images\circleLoader-large.gif
[2010.04.21 08:16:46 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Documentation\install_guides\ArcGIS_Desktop\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.04.21 08:16:46 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\Documentation\install_guides\ArcGIS_Desktop\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.05.11 12:23:20 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\de\lmrefguide\includes\images\circleLoader-large.gif
[2010.05.11 12:23:20 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\de\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.05.11 12:23:20 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\de\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.05.11 12:23:20 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\es\lmrefguide\includes\images\circleLoader-large.gif
[2010.05.11 12:23:20 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\es\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.05.11 12:23:20 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\es\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.05.11 12:23:20 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\fr\lmrefguide\includes\images\circleLoader-large.gif
[2010.05.11 12:23:20 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\fr\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.05.11 12:23:20 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\fr\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.04.21 08:16:46 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\ja\lmrefguide\includes\images\circleLoader-large.gif
[2010.04.21 08:16:46 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\ja\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.04.21 08:16:46 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\ja\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.04.21 08:16:46 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\lmrefguide\includes\images\circleLoader-large.gif
[2010.04.21 08:16:46 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.04.21 08:16:46 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2010.04.21 08:16:46 | 000,008,238 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\zh-CN\lmrefguide\includes\images\circleLoader-large.gif
[2010.04.21 08:16:46 | 000,010,819 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\zh-CN\lmrefguide\includes\js\lazyTree\v1.0\images\bar-loader.gif
[2010.04.21 08:16:46 | 000,001,849 | ---- | M] () -- \Program Files (x86)\ArcGIS\License10.0\Documentation\zh-CN\lmrefguide\includes\js\lazyTree\v1.0\images\circle-loader.gif
[2013.04.21 20:44:16 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2010.04.13 08:34:22 | 000,118,784 | ---- | M] () -- \Program Files (x86)\Common Files\ArcGIS\ThirdParty\bin\MBViewsLoader.exe
[2010.04.13 08:34:22 | 000,001,852 | ---- | M] () -- \Program Files (x86)\Common Files\ArcGIS\ThirdParty\bin\MBViewsLoader.tlb
[2013.08.27 13:38:36 | 001,028,664 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\lib\DVSVideoDownloader.dll
[2013.09.01 18:40:27 | 000,000,629 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
[2013.09.01 18:40:27 | 000,000,615 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
[2013.09.01 18:40:27 | 000,002,796 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\youtube_mp3_downloader_32_32.png
[2013.09.01 18:40:27 | 000,002,641 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\youtube_video_downloader_32_32.png
[2013.04.15 18:22:20 | 000,042,557 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\chrome\content\dvsyoutubedownloader.js
[2012.11.21 19:22:06 | 000,002,431 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\chrome\content\dvsyoutubedownloader.xul
[2013.01.14 13:14:24 | 000,000,634 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\skin\dvsmenuext-ytvdownloader.png
[2013.03.12 16:23:44 | 000,002,115 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\skin\dvsyoutubedownloader.css
[2012.11.21 19:22:06 | 000,002,796 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\skin\youtube_mp3_downloader_32_32.png
[2012.11.21 19:22:06 | 000,002,641 | ---- | M] () -- \Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\skin\youtube_video_downloader_32_32.png
[2012.10.01 19:34:40 | 000,268,384 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2012.10.01 19:34:40 | 000,019,048 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2010.03.03 13:17:54 | 000,470,551 | ---- | M] () -- \Program Files (x86)\DAEMON Tools Pro\autoloader_dt_loader_0.4.exe
[2010.03.03 14:10:36 | 000,691,200 | ---- | M] () -- \Program Files (x86)\DAEMON Tools Pro\DTAgent_loader_0.4.exe
[2013.05.19 18:56:35 | 000,000,080 | ---- | M] () -- \Program Files (x86)\DAEMON Tools Pro\dt_loader.ini
[2010.03.03 14:09:58 | 000,688,640 | ---- | M] () -- \Program Files (x86)\DAEMON Tools Pro\DT_loader_0.4.exe
[2013.08.27 12:51:06 | 000,039,992 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\DVDVideoSoft.DVSVideoDownloader.dll
[2013.08.27 12:51:06 | 002,527,288 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
[2013.04.04 18:56:46 | 000,001,020 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.xml
[2013.06.27 05:01:02 | 000,003,704 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloaderProfile.xml
[2013.06.27 05:01:02 | 000,006,174 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloaderProfileD.xml
[2013.08.27 12:50:58 | 000,028,672 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\da-DK\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\de-DE\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,032,768 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\el-GR\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\es-ES\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,968 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\fr-FR\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\hu-HU\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\it-IT\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,032,768 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\ja-JP\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\nl-NL\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\pl-PL\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\pt-BR\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\pt-PT\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,032,768 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\ru-RU\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,028,672 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\sv-SE\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,019,456 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\tr-TR\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,028,672 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\zh-CN\FreeYTVDownloader.resources.dll
[2013.08.27 12:50:58 | 000,028,672 | ---- | M] () -- \Program Files (x86)\DVDVideoSoft\Free YouTube Download\zh-TW\FreeYTVDownloader.resources.dll
[2009.05.21 19:21:18 | 000,007,507 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\HelpViewer\Resources\Loader.swf
[2009.09.20 11:15:26 | 000,030,776 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\RsrcLoaderLib.dll
[2009.09.20 11:15:26 | 000,002,713 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\MozillaAddOn3\xre\components\uriloader.xpt
[2005.10.14 01:49:48 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 01:49:48 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2013.02.08 10:11:46 | 000,195,912 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\AcAutoLoader.arx
[2013.02.08 10:07:18 | 002,343,240 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\AdDownloaderCore.dll
[2013.01.18 15:02:16 | 000,026,440 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\AecLoader.arx
[2013.03.11 18:48:08 | 000,010,552 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\cs-CZ\AcAutoLoaderRes.dll
[2012.05.25 02:55:50 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\GeoMapHtml\assets\icon\ajax-loader.gif
[2013.01.25 22:36:46 | 000,064,384 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2014\Inventor Server\Bin\ClrAddinLoader.dll
[2013.04.16 00:35:54 | 000,194,888 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcAutoLoader.arx
[2013.07.10 17:48:44 | 000,081,408 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcMapLoader.arx
[2012.02.22 01:58:54 | 000,002,560 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcMapLoaderRes.dll
[2012.02.06 19:38:06 | 002,342,312 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AdDownloaderCore.dll
[2013.05.16 00:28:18 | 000,026,952 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecLoader.arx
[2013.05.16 00:28:24 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXBaseLoader.dll
[2013.05.16 00:28:24 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDisplayPropsDataLoader.dll
[2013.05.16 00:28:22 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDtlLoader.dll
[2013.05.16 00:28:36 | 000,069,448 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDynPropsLoader.dll
[2013.05.16 00:28:16 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXExtendedDataLoader.dll
[2013.05.16 00:28:18 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXGuiBaseLoader.dll
[2013.05.16 00:28:14 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXToolClassLoader.dll
[2013.05.16 00:28:24 | 000,070,984 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXUIBaseLoader.dll
[2013.07.10 18:00:10 | 000,319,488 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\EmbeddedSQLiteLoader.dll
[2012.03.12 23:47:55 | 000,012,912 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\cs-CZ\AcAutoLoaderRes.dll
[2013.08.05 08:02:42 | 000,000,455 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\APPAUTOLOADER.htm
[2013.08.05 08:04:59 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehive\core\FileLoader.js
[2013.08.05 08:05:01 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehive\ui\StylesheetLoader.js
[2013.08.05 08:05:01 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehiveSearch\styles\images\loader.gif
[2013.08.05 08:02:30 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehive\core\FileLoader.js
[2013.08.05 08:02:31 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehive\ui\StylesheetLoader.js
[2013.08.05 08:02:31 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehiveSearch\styles\images\loader.gif
[2012.10.01 19:34:40 | 000,364,128 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2012.10.01 19:34:40 | 000,019,048 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.05.18 07:34:06 | 000,012,288 | ---- | M] () -- \ProgramData\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.dll
[2012.05.18 07:34:06 | 000,001,613 | ---- | M] () -- \ProgramData\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.dll.config
[2012.05.18 07:34:06 | 000,026,112 | ---- | M] () -- \ProgramData\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.pdb
[2013.03.26 13:13:12 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.03.26 13:13:12 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.03.26 13:13:12 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2012.05.18 07:34:06 | 000,012,288 | ---- | M] () -- \Users\All Users\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.dll
[2012.05.18 07:34:06 | 000,001,613 | ---- | M] () -- \Users\All Users\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.dll.config
[2012.05.18 07:34:06 | 000,026,112 | ---- | M] () -- \Users\All Users\Autodesk\C3D 2013\csy\Data\Reports\Net\Lisploader.pdb
[2013.03.26 13:13:12 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.03.26 13:13:12 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.03.26 13:13:12 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2014.02.22 17:40:04 | 000,002,641 | ---- | M] () -- \Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0\images\YoutubeDownloader.png
[2013.07.22 11:42:14 | 000,040,448 | ---- | M] () -- \Users\Honza\AppData\Roaming\Autodesk\ApplicationPlugins\PlexscapePlugin-PlexEarth3.bundle\Contents\Windows\CustomActionsAutoloaderClass.dll
[2013.06.27 05:01:02 | 000,003,704 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\FreeYTVDownloader\FreeYTVDownloaderProfile.xml
[2013.09.08 21:03:31 | 007,304,534 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader.log
[2013.09.08 19:14:20 | 000,000,086 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader_extra_debug.log
[2013.09.01 18:38:50 | 000,004,106 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\logs\FreeYTVDownloader_install.txt
[2013.09.06 14:31:20 | 000,133,806 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\logs\YTVDownloader_extra1.log
[2013.09.06 14:31:20 | 000,133,806 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoft\logs\YTVDownloader_extra3.log
[2013.09.01 18:40:26 | 000,000,257 | ---- | M] () -- \Users\Honza\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
[2013.06.06 20:08:09 | 000,792,704 | ---- | M] () -- \Users\Honza\Downloads\amddriverdownloader.exe
[1 \Users\Honza\Downloads\*.tmp files -> \Users\Honza\Downloads\*.tmp -> ]
[2010.03.03 13:17:54 | 000,470,551 | ---- | M] () -- \Users\Honza\Downloads\Nová složka\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\Loader\autoloader_dt_loader_0.4.exe
[2012.02.06 19:39:48 | 000,193,960 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AcAutoLoader.arx
[2012.02.20 08:09:18 | 000,026,024 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecLoader.arx.8909A8D4_60AC_4F11_A304_FE07
[2012.02.20 08:09:18 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXBaseLoader.dll.D056253A_3F5D_4025_A381
[2012.02.20 08:09:18 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXDisplayPropsDataLoader.dll.D056253A_3F
[2012.02.20 08:09:18 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXDtlLoader.dll.D056253A_3F5D_4025_A381_
[2012.02.20 08:09:18 | 000,068,520 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXDynPropsLoader.dll.D056253A_3F5D_4025_
[2012.02.20 08:09:14 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXExtendedDataLoader.dll.D056253A_3F5D_4
[2012.02.20 08:09:14 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXGuiBaseLoader.dll.D056253A_3F5D_4025_A
[2012.02.20 08:09:14 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXToolClassLoader.dll.D056253A_3F5D_4025
[2012.02.20 08:09:18 | 000,070,056 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\7D2F3875000B5040102000060BECB6AB\10.0.1111\RDF_COMP_AecXUIBaseLoader.dll.D056253A_3F5D_4025_A3
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:28:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:41:11 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:26:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_66fe4899953f502c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 15:12:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_677d175eae65090e\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 16:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 16:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 16:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 16:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 16:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2013.06.08 18:34:02 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2013.06.08 18:34:02 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2013.06.08 18:34:02 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2013.06.08 18:34:02 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2013.06.08 18:34:02 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 16:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 05:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >
[2010.05.02 07:06:32 | 000,009,773 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\help\gp\DefineMosaicDatasetNoData_management.xml
[2010.04.29 17:52:22 | 000,007,153 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\help\gp\PointNode_arc.xml
[2010.04.29 17:52:22 | 000,020,968 | ---- | M] () -- \Program Files (x86)\ArcGIS\Desktop10.0\help\gp\PointNode_arc_h.gif
[2013.08.05 08:02:58 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_C.htm
[2013.08.05 08:02:58 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_P.htm
[2013.08.05 08:02:58 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_R.htm

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2012.02.22 02:19:06 | 000,032,256 | R--- | M] () -- \Program Files (x86)\Autodesk\SSA 2013\Bin\Autodesk.Map.IM.Data.Provider.FDO.FeatureServiceWrapper.XmlSerializers.dll
[2012.02.22 02:17:10 | 000,026,624 | R--- | M] () -- \Program Files (x86)\Autodesk\SSA 2013\Bin\Autodesk.Map.IM.Graphic.XmlSerializers.dll
[2012.02.22 02:17:34 | 000,230,912 | R--- | M] () -- \Program Files (x86)\Autodesk\SSA 2013\Bin\Autodesk.Map.IM.Update.Xml.XmlSerializers.dll
[2009.07.20 00:57:48 | 000,019,968 | ---- | M] () -- \Program Files (x86)\Common Files\Data Dynamics\ActiveReports for .NET 3.0\ActiveReports.CodeDomSerializer.dll
[2013.05.13 14:14:36 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.dll
[2013.07.22 18:45:26 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.ni.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2011.09.14 07:12:52 | 000,002,594 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\AdLM\R5\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2011.09.14 16:12:52 | 000,002,594 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\AdLM\R7\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2007.04.20 22:57:18 | 000,005,540 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\grammar_fa\tests\fa_serial.test
[2007.04.20 22:57:20 | 000,007,945 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\deserialize.test
[2007.04.20 22:57:20 | 000,004,341 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\serialize.test
[2012.10.01 19:36:32 | 000,166,864 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.BackEnd.XmlSerializers.dll
[2012.10.01 19:36:32 | 000,209,360 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.XmlSerializers.dll
[2013.05.13 16:04:04 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.dll
[2013.07.22 18:46:03 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.ni.dll
[2010.11.05 02:52:08 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2009.09.20 09:42:24 | 000,004,185 | ---- | M] () -- \ProgramData\HP\LGT\Data\Models\Images\identifying_serial.jpg
[2009.09.20 09:42:24 | 000,004,185 | ---- | M] () -- \Users\All Users\HP\LGT\Data\Models\Images\identifying_serial.jpg
[2013.08.08 14:06:13 | 000,019,968 | ---- | M] () -- \Windows\assembly\GAC_MSIL\ActiveReports.CodeDomSerializer\5.2.1331.2__cc4967777c49a3ff\ActiveReports.CodeDomSerializer.dll
[2009.07.14 16:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.06.08 18:51:07 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\0728af1479c3388cadf85ccfc2b12582\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.06.08 18:52:37 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\4a984a9ad59d14063bc6ae64a0c8f62a\System.Runtime.Serialization.ni.dll
[2013.06.08 18:49:35 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\52bdf474b237d949c5b2b407ebec8f1e\System.Runtime.Serialization.ni.dll
[2013.06.08 18:45:14 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8ad0e1382ab6565741bbb64b965f2748\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.05.20 14:57:20 | 000,304,640 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\873837befa260d32cd0b3ce811b96efb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.07 16:36:05 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\873837befa260d32cd0b3ce811b96efb\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2013.05.20 14:57:19 | 002,785,280 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\293cfe2c05a8ee921726927fd00ea81c\System.Runtime.Serialization.ni.dll
[2014.02.07 16:36:06 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\293cfe2c05a8ee921726927fd00ea81c\System.Runtime.Serialization.ni.dll.aux
[2013.05.20 14:58:19 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\15ecbb8a1ddca366bda70718005521a1\System.Xml.Serialization.ni.dll
[2014.02.07 17:06:19 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\15ecbb8a1ddca366bda70718005521a1\System.Xml.Serialization.ni.dll.aux
[2013.05.20 15:03:00 | 000,373,248 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\cab4c46773a123bd72b938cc405aed46\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.07 17:08:15 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\cab4c46773a123bd72b938cc405aed46\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2013.05.20 15:02:59 | 003,599,872 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\9ffb83b70cc1fa28d2fd02956cf0c831\System.Runtime.Serialization.ni.dll
[2014.02.07 17:10:19 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\9ffb83b70cc1fa28d2fd02956cf0c831\System.Runtime.Serialization.ni.dll.aux
[2013.05.20 15:10:56 | 000,028,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\b2db45296eabfd00db1920158f3f5eb5\System.Xml.Serialization.ni.dll
[2014.02.07 17:13:00 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\b2db45296eabfd00db1920158f3f5eb5\System.Xml.Serialization.ni.dll.aux
[2012.07.09 02:42:12 | 000,027,760 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2012.07.09 02:42:12 | 000,113,704 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 001,050,096 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2012.07.09 00:40:08 | 001,050,096 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2012.07.09 02:42:12 | 000,027,760 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.07.09 02:42:12 | 000,113,704 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:52:16 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2012.07.09 00:40:08 | 001,050,096 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2012.09.27 21:44:46 | 000,027,824 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.07.09 02:42:12 | 000,113,704 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 16:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 16:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 02:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2009.07.14 16:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 21:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2012.10.06 11:53:01 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.17136_none_593e9c4e749147df\System.Runtime.Serialization.dll
[2012.10.06 11:56:09 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.21337_none_4270dea28e38c1d7\System.Runtime.Serialization.dll
[2010.11.05 02:52:16 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2009.06.10 21:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2012.10.06 11:53:00 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_9415a918c8894278\System.Runtime.Serialization.dll
[2012.10.06 11:56:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_7d47eb6ce230bc70\System.Runtime.Serialization.dll
[2010.11.05 02:52:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2013.06.08 18:33:59 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2013.06.08 18:33:59 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2009.07.14 16:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 03:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 16:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 03:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 03:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 14:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 14:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 18:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 14:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 03:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 03:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2012.10.06 19:44:48 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.17136_none_593e9c4e749147df.manifest
[2012.10.06 20:00:33 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.21337_none_4270dea28e38c1d7.manifest
[2010.11.20 05:21:24 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2009.07.14 03:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2012.10.06 19:46:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_9415a918c8894278.manifest
[2012.10.06 20:01:29 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_7d47eb6ce230bc70.manifest
[2010.11.20 05:22:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2012.10.06 19:07:20 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009.manifest
[2012.10.06 19:58:54 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01.manifest
[2010.11.20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2009.07.14 16:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012.10.06 21:42:01 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023.manifest
[2012.10.06 23:05:03 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2012.10.06 19:11:48 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c.manifest
[2012.10.06 20:03:01 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34.manifest
[2010.11.20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2012.10.06 19:09:38 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e.manifest
[2012.10.06 20:00:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576.manifest
[2010.11.20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2012.10.06 11:54:26 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009\System.Runtime.Serialization.dll
[2012.10.06 11:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01\System.Runtime.Serialization.dll
[2010.11.05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023\System.RunTime.Serialization.Resources.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2009.07.14 16:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 138 bytes -> H:\ProgramData\TEMP:054203E4
@Alternate Data Stream - 134 bytes -> H:\ProgramData\TEMP:A1EDB939

< End of report >

#8 Příspěvek od **Márty84** » 22 úno 2014 21:34

Jen takova mala technicka. Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze

Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.

pet368 · #9 Příspěvek od **pet368** » 22 úno 2014 21:53

S win by nemel být problém. Není to sice běžná domácí verze, ale systém byl pořízen z důvodu, že některé programy, které pracují na bázi cadu easyTrack, BrisCAD,... zrovna ne dobře, nebo vůbec nepracují pod nižší verzi win, nebo cz win - bohužel.

pet368 · #10 Příspěvek od **pet368** » 22 úno 2014 21:56

# AdwCleaner v3.019 - Report created 22/02/2014 at 21:53:57
# Updated 17/02/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Honza - HONZA-PC
# Running from : H:\Users\Honza\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : H:\ProgramData\IBUpdaterService
Folder Deleted : H:\ProgramData\AlawarWrapper
Folder Deleted : H:\Program Files (x86)\MyPC Backup
Folder Deleted : H:\Program Files (x86)\Speed Analysis 3
Folder Deleted : H:\Users\Honza\AppData\Local\AlawarWrapper
Folder Deleted : H:\Users\Honza\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : H:\Users\Honza\AppData\Roaming\file scout
Folder Deleted : H:\Users\Honza\AppData\Roaming\SpeedAnalysis3
Folder Deleted : H:\Users\Honza\AppData\Roaming\zulagames
Folder Deleted : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Folder Deleted : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
File Deleted : H:\Users\Honza\AppData\Roaming\speedanalysis.ico

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject.1
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar.1
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\Zula Games.BackgroundHostObject
Key Deleted : HKLM\SOFTWARE\Classes\Zula Games.BackgroundHostObject.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0771C34F-730F-4535-AD4C-37B74D27188E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{15998F3C-BBA9-476D-8FC2-09BE9E3B8751}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A09B0156-EFCE-46B4-9118-BC270EA654C1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D88E0FD9-31EB-48EF-BC89-35EBCE0E813C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{ACE0D5AB-50C8-4052-BD02-977569E56291}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\filescout
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 3

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16483

-\\ Google Chrome v33.0.1750.117

[ File : H:\Users\Honza\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [5156 octets] - [22/02/2014 18:45:07]
AdwCleaner[R1].txt - [6623 octets] - [22/02/2014 21:47:53]
AdwCleaner[S0].txt - [6596 octets] - [22/02/2014 21:53:57]

########## EOF - H:\AdwCleaner\AdwCleaner[S0].txt - [6656 octets] ##########

#11 Příspěvek od **Márty84** » 22 úno 2014 22:02

Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

pet368 · #12 Příspěvek od **pet368** » 23 úno 2014 08:39

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.22.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Honza :: HONZA-PC [limited]

22.2.2014 22:29:08
MBAM-log-2014-02-23 (08-10-54).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|H:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 1251990
Uplynulý čas: 9 hodin, 13 minut, 19 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 16
C:\Program Files (x86)\UNIO_systems\Autoškola_professional\autoskola.professional.v3.4.9.1.czech-patch.exe (PUP.Hacktool.Patcher) -> Nebyla provedena žádná instrukce.
C:\Users\Jan\AppData\Local\Temp\KMP_3.2.0.0.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
D:\škola magisterske\Phoenix.rar (Backdoor.Bot) -> Nebyla provedena žádná instrukce.
E:\škola materiály\2013.zip (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
H:\AdwCleaner\Quarantine\H\Program Files (x86)\Speed Analysis 3\BackgroundHost.exe.vir (PUP.Optional.BestToolbar) -> Nebyla provedena žádná instrukce.
H:\AdwCleaner\Quarantine\H\Program Files (x86)\Speed Analysis 3\BackgroundHost64.exe.vir (PUP.Optional.BestToolbar) -> Nebyla provedena žádná instrukce.
H:\AdwCleaner\Quarantine\H\Program Files (x86)\Speed Analysis 3\uninst.exe.vir (PUP.Optional.7Go.A) -> Nebyla provedena žádná instrukce.
H:\AdwCleaner\Quarantine\H\Users\Honza\AppData\Roaming\file scout\filescout.exe.vir (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
H:\Program Files (x86)\DAEMON Tools Pro\autoloader_dt_loader_0.4.exe (Trojan.Swisyn) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\AppData\Roaming\DVDVideoSoft\FreeYouTubeDownload.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\DAEMONToolsPro530-0359.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\KMPlayer_3-6-0-85-fdu.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\UPDFSetup.exe (Adware.InstallBrain) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\Nová složka\DAEMON-Tools-Pro-Advanced-5.0.0316.0317-(2012).rar (Trojan.Swisyn) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\Nová složka\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\DAEMONToolsPro500316-0317.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
H:\Users\Honza\Downloads\Nová složka\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\DAEMON Tools Pro Advanced 5.0.0316.0317 (2012) [MULTi][WwW.ZoNaTorrent.CoM]\Loader\autoloader_dt_loader_0.4.exe (Trojan.Swisyn) -> Nebyla provedena žádná instrukce.

(konec)

pet368 · #13 Příspěvek od **pet368** » 23 úno 2014 08:45

u tohoto disku byl scan v pořádku

pet368 · #14 Příspěvek od **pet368** » 23 úno 2014 08:46

u tohoto disku byl také scan v pořádku

pet368 · #15 Příspěvek od **pet368** » 23 úno 2014 08:47

na tomto disku našel scan 3 poškozené oblasti

VIRY.CZ

Zamrzání PC

Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC

Re: Zamrzání PC