Zasekané prohlížeče

Zpráva

Ranga · #1 Příspěvek od **Ranga** » 25 bře 2014 22:12

Dobrý den,
potřeboval bych poradit co mám dělat s prohlížeči, jak s Opera tak i Chrome či Explorer, zasekávají se mi při načítání stránek a dokonce i při přehrávání videa naskočí zelený obraz nebo se mi seknou i jednolivé okna mezi kterými se již nedá překlikávat prostě to zamrzne. Nevím jestli to může mít nějaké následky viru, objevila se mi zpráva české policie o zaplacení blabla... a od té doby jsou prohlížeče zasekané. Zkoušel jsem kompletně pročistit avastem jak PC tak prohlížeče a CCleaner jsem taky zkoušel. Bohužel si nevím rady a prosím o pomoc.
Děkuji.

#2 Příspěvek od **Rudy** » 25 bře 2014 22:38

Zdravím!
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

Ranga · #3 Příspěvek od **Ranga** » 26 bře 2014 22:13

Dějuji za odkaz, ale ještě bych chtěl dodat, že když dám správce úloh systému a najedu procesy tak při spuštění Opery či Chrome a jínych prohlížečů se mi začnou otevirát několikrát znova a znova prostě se Opera v procesu objeví třeba 5x a když ji ukončím znovu se zepne...nenapadá Vás něco? Musí to být nějaký vir jenže Avast mám premium s plnou aktualizací a vůbec nic nenašel

Ranga · #4 Příspěvek od **Ranga** » 26 bře 2014 22:36

Pročetl jsem si pár jiných dotazů co tady byly tak to ješte zkusím projet Malwarebytes, ale nevím jestli to pomůže každopádně si myslím že se jedná o vir, který mi neustále zapína znova a znova proces prohlížeče, proto je pořád prohlížeč tak zasekaný. Co tedy udělat,??

#5 Příspěvek od **Rudy** » 26 bře 2014 22:40

Odkaz jsem vám dal proto, abych se dověděl, co v systému běží a mohl se rozhodnout, jak dál postupovat. MBAM může být jednou z možností.

Ranga · #6 Příspěvek od **Ranga** » 26 bře 2014 22:45

OK hned to jsem dám

Ranga · #7 Příspěvek od **Ranga** » 26 bře 2014 22:46

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Hnanda (administrator) on HNANDA-PC on 26-03-2014 22:51:00
Running from C:\Users\Hnanda\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
() C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
() C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
() C:\Program Files (x86)\Opera\20.0.1387.82\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.82\opera.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(forum.viry.cz) C:\Users\Hnanda\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2014-02-12] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6202416 2014-02-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynLenovoGestureMgr] - C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-27] (Synaptics)
HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6334096 2012-08-27] (Realtek semiconductor)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508144 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-12] (AVAST Software)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] - C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-23] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1529418845-443675186-1241643299-1000\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1529418845-443675186-1241643299-1000\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-1529418845-443675186-1241643299-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1529418845-443675186-1241643299-1000\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Hnanda\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1529418845-443675186-1241643299-1000\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-03-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2014-03-04] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {09BD656D-0408-4B90-9A74-5AF138F50219} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {178C361D-CC5D-4793-BC66-AC7F7757ADFC} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKCU - {1FFC053D-CBF0-42B7-917B-45BF0B30C8BB} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKCU - {2B552DCA-714A-4462-A44E-8CDC9F245514} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKCU - {8C2AA818-4511-4F6B-9AC8-2BE88067A48C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKCU - {9E63EA49-7292-4EA8-90A9-C37CB4FA071B} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKCU - {B1E24EFE-B676-4FFB-BAA6-03DC471D03EE} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKCU - {C13670E9-8976-4604-B667-594F3469C526} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKCU - {EAEF2257-F9C9-487F-9F8F-40EE4E65248B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.100 79.170.254.2

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Extension: (Dokumenty Google) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-12]
CHR Extension: (Disk Google) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-12]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-02-12]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-02-12]
CHR Extension: (YouTube) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-12]
CHR Extension: (Vyhledávání Google) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-12]
CHR Extension: (Closed tabs) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\eonffnnfmbfnmjpaiigdclmfelolemah [2014-02-12]
CHR Extension: (Green Tree [FVD]) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gghjhhgopnogfikfjgnmhcmddhhhdojj [2014-02-12]
CHR Extension: (avast! Online Security) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-12]
CHR Extension: (New Tab Page for FVD Speed Dial) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\idgeoanibcknhniccgaoaiolihidecjn [2014-02-12]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2014-02-12]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-02-12]
CHR Extension: (Peněženka Google) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-12]
CHR Extension: (Můj motiv Chrome) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2014-02-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-03-19]
CHR Extension: (Gmail) - C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-12]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-02-12]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-12] (AVAST Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-06-25] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-02-25] ()
S3 WatAdminSvc; C:\Windows\system32\Wat\WatAdminSvc.exe [1255736 2014-02-19] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3325232 2012-06-25] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-02-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-02-12] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-12] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-02-12] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-19] (Disc Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-26] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8227216 2012-08-27] (Realtek Semiconductor Corp.)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 cpuz134; \??\C:\Users\Hnanda\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S2 SPDRIVER_1.30.1.149; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.149\jsdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-03-26 22:51 - 2014-03-26 22:51 - 00018641 _____ () C:\Users\Hnanda\Desktop\FRST.txt
2014-03-26 22:50 - 2014-03-26 22:51 - 00000000 ____D () C:\FRST
2014-03-26 22:49 - 2014-03-26 22:49 - 00112640 _____ (forum.viry.cz) C:\Users\Hnanda\Desktop\FRSTLauncher.exe
2014-03-26 22:48 - 2014-03-26 22:49 - 02157056 _____ (Farbar) C:\Users\Hnanda\Desktop\FRST64.exe
2014-03-26 22:44 - 2014-03-26 22:44 - 00012674 _____ () C:\Windows\PFRO.log
2014-03-26 22:44 - 2014-03-26 22:44 - 00000168 _____ () C:\Windows\setupact.log
2014-03-26 22:44 - 2014-03-26 22:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-26 22:33 - 2014-03-26 22:45 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-26 22:33 - 2014-03-26 22:33 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-26 22:33 - 2014-03-26 22:33 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-26 22:33 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-26 22:33 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-03-26 22:33 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-26 22:07 - 2014-03-26 22:08 - 00000000 ____D () C:\AdwCleaner
2014-03-26 15:53 - 2014-03-26 15:53 - 00014813 _____ () C:\Users\Hnanda\AppData\Local\recently-used.xbel
2014-03-26 15:52 - 2014-03-26 15:53 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\gtk-2.0
2014-03-26 15:52 - 2014-03-26 15:52 - 00000000 ____D () C:\Users\Hnanda\.thumbnails
2014-03-26 15:49 - 2014-03-26 15:49 - 07255711 _____ () C:\Users\Hnanda\Downloads\PgrC08.zip
2014-03-26 15:39 - 2014-03-26 16:34 - 00000000 ____D () C:\Users\Hnanda\.gimp-2.8
2014-03-26 15:39 - 2014-03-26 15:39 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\gegl-0.2
2014-03-26 15:21 - 2014-03-26 15:21 - 00000000 ____D () C:\Program Files\GIMP 2
2014-03-24 22:12 - 2014-03-24 22:12 - 00000000 ____D () C:\Program Files (x86)\WinHTTrack
2014-03-24 20:59 - 2014-03-25 07:50 - 00475136 _____ () C:\Users\Hnanda\Downloads\zasoby.accdb
2014-03-24 19:22 - 2014-03-24 19:22 - 00000000 ____D () C:\Users\Hnanda\Desktop\Skola
2014-03-24 15:57 - 2014-03-24 15:57 - 00000000 ____D () C:\Users\Hnanda\Downloads\Seminář
2014-03-23 13:48 - 2014-03-25 07:01 - 00000000 ___RD () C:\Users\Hnanda\Disk Google
2014-03-23 13:27 - 2014-03-26 22:43 - 00000000 ___RD () C:\Users\Hnanda\Dropbox
2014-03-23 13:26 - 2014-03-26 22:30 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Dropbox
2014-03-23 13:26 - 2014-03-23 13:27 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\DropboxMaster
2014-03-23 13:26 - 2014-03-23 13:26 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-23 12:24 - 2014-03-25 21:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-23 12:20 - 2014-03-23 12:20 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-23 12:19 - 2014-03-23 12:20 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-22 17:06 - 2014-03-22 17:07 - 00000000 ____D () C:\Users\Hnanda\Desktop\Principy dat.syst‚m…
2014-03-21 15:00 - 2014-03-21 16:28 - 00000000 ____D () C:\Users\Hnanda\Desktop\XTB
2014-03-20 21:31 - 2014-03-20 21:31 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-20 21:31 - 2014-03-20 21:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-20 14:13 - 2014-03-20 14:14 - 00000000 ____D () C:\Windows\SysWOW64\C2MP
2014-03-19 10:59 - 2014-03-19 10:59 - 00003164 _____ () C:\Windows\System32\Tasks\UNELEVATE_18131
2014-03-19 10:50 - 2014-03-19 11:00 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO
2014-03-19 10:49 - 2014-03-19 10:49 - 00004506 _____ () C:\Windows\System32\Tasks\ShopperPro
2014-03-19 10:49 - 2014-03-19 10:49 - 00003572 _____ () C:\Windows\System32\Tasks\ShopperProJSUpd
2014-03-19 10:49 - 2014-03-19 10:49 - 00003496 _____ () C:\Windows\System32\Tasks\SPDriver
2014-03-19 10:49 - 2014-03-19 10:49 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-03-19 10:47 - 2014-03-26 22:49 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Seznam.cz
2014-03-19 10:47 - 2014-03-19 10:47 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\CrashRpt
2014-03-19 10:47 - 2014-03-19 10:47 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-19 10:46 - 2014-03-19 10:46 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-19 10:46 - 2014-03-19 10:46 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-17 15:04 - 2014-03-17 15:04 - 00147360 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-03-13 15:59 - 2014-03-13 16:01 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files\iTunes
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files\iPod
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-13 15:59 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\ProgramData\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files\Bonjour
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-03-12 22:23 - 2014-03-12 22:27 - 00000000 ____D () C:\Users\Hnanda\.android
2014-03-11 15:24 - 2014-03-11 15:24 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-11 15:24 - 2014-03-11 15:24 - 00000000 ____D () C:\Windows\system32\NV
2014-03-11 15:19 - 2014-03-04 15:35 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-11 15:19 - 2014-03-04 15:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00484296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00409544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00377688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-11 15:19 - 2014-03-04 15:35 - 00033736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-03-11 07:52 - 2014-03-11 07:52 - 00000246 _____ () C:\Users\Hnanda\Documents\sasd.txt
2014-03-09 12:45 - 2014-03-09 12:45 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Jpeg Resampler
2014-03-09 12:45 - 2014-03-09 12:45 - 00000000 ____D () C:\Program Files (x86)\JpegResampler2010
2014-03-06 14:22 - 2014-03-21 15:02 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-02-27 16:42 - 2014-02-27 16:42 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-02-27 05:06 - 2014-02-27 05:06 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-02-25 20:51 - 2014-03-26 16:33 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-02-25 20:51 - 2014-02-25 20:51 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\PunkBuster
2014-02-25 20:23 - 2014-02-25 20:25 - 00840264 _____ () C:\Windows\SysWOW64\pb_services.exe
2014-02-25 19:48 - 2014-03-26 16:33 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-02-25 19:48 - 2014-03-26 16:33 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-02-25 19:47 - 2014-02-25 20:27 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-25 18:23 - 2014-02-25 18:23 - 00000256 _____ () C:\Windows\game.ini
2014-02-25 18:11 - 2014-02-25 18:11 - 00000000 __SHD () C:\Windows\ftpcache

==================== One Month Modified Files and Folders =======

2014-03-26 22:51 - 2014-03-26 22:51 - 00018641 _____ () C:\Users\Hnanda\Desktop\FRST.txt
2014-03-26 22:51 - 2014-03-26 22:50 - 00000000 ____D () C:\FRST
2014-03-26 22:49 - 2014-03-26 22:49 - 00112640 _____ (forum.viry.cz) C:\Users\Hnanda\Desktop\FRSTLauncher.exe
2014-03-26 22:49 - 2014-03-26 22:48 - 02157056 _____ (Farbar) C:\Users\Hnanda\Desktop\FRST64.exe
2014-03-26 22:49 - 2014-03-19 10:47 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Seznam.cz
2014-03-26 22:49 - 2009-07-14 16:18 - 00669700 _____ () C:\Windows\system32\perfh005.dat
2014-03-26 22:49 - 2009-07-14 16:18 - 00141392 _____ () C:\Windows\system32\perfc005.dat
2014-03-26 22:49 - 2009-07-14 06:13 - 01585258 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-26 22:48 - 2014-02-12 21:08 - 01260757 _____ () C:\Windows\WindowsUpdate.log
2014-03-26 22:45 - 2014-03-26 22:33 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-26 22:45 - 2014-02-12 22:51 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-03-26 22:44 - 2014-03-26 22:44 - 00012674 _____ () C:\Windows\PFRO.log
2014-03-26 22:44 - 2014-03-26 22:44 - 00000168 _____ () C:\Windows\setupact.log
2014-03-26 22:44 - 2014-03-26 22:44 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-26 22:44 - 2014-02-12 22:20 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-26 22:44 - 2009-07-14 06:08 - 00032550 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-26 22:44 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-26 22:43 - 2014-03-23 13:27 - 00000000 ___RD () C:\Users\Hnanda\Dropbox
2014-03-26 22:38 - 2014-02-12 22:11 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-26 22:34 - 2014-02-19 15:16 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\inkscape
2014-03-26 22:34 - 2014-02-13 07:40 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\TS3Client
2014-03-26 22:33 - 2014-03-26 22:33 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-26 22:33 - 2014-03-26 22:33 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-03-26 22:30 - 2014-03-23 13:26 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Dropbox
2014-03-26 22:25 - 2014-02-12 22:20 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-26 22:08 - 2014-03-26 22:07 - 00000000 ____D () C:\AdwCleaner
2014-03-26 21:21 - 2014-02-12 22:42 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Skype
2014-03-26 16:34 - 2014-03-26 15:39 - 00000000 ____D () C:\Users\Hnanda\.gimp-2.8
2014-03-26 16:33 - 2014-02-25 20:51 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-03-26 16:33 - 2014-02-25 19:48 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-03-26 16:33 - 2014-02-25 19:48 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-03-26 15:53 - 2014-03-26 15:53 - 00014813 _____ () C:\Users\Hnanda\AppData\Local\recently-used.xbel
2014-03-26 15:53 - 2014-03-26 15:52 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\gtk-2.0
2014-03-26 15:52 - 2014-03-26 15:52 - 00000000 ____D () C:\Users\Hnanda\.thumbnails
2014-03-26 15:52 - 2014-02-12 21:30 - 00000000 ____D () C:\Users\Hnanda
2014-03-26 15:49 - 2014-03-26 15:49 - 07255711 _____ () C:\Users\Hnanda\Downloads\PgrC08.zip
2014-03-26 15:39 - 2014-03-26 15:39 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\gegl-0.2
2014-03-26 15:21 - 2014-03-26 15:21 - 00000000 ____D () C:\Program Files\GIMP 2
2014-03-25 21:49 - 2014-03-23 12:24 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-25 21:49 - 2014-02-12 22:49 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\DAEMON Tools Lite
2014-03-25 21:28 - 2014-02-12 22:47 - 00000000 ___RD () C:\Users\Hnanda\Documents\SPŠ-Materiál
2014-03-25 07:50 - 2014-03-24 20:59 - 00475136 _____ () C:\Users\Hnanda\Downloads\zasoby.accdb
2014-03-25 07:01 - 2014-03-23 13:48 - 00000000 ___RD () C:\Users\Hnanda\Disk Google
2014-03-24 22:12 - 2014-03-24 22:12 - 00000000 ____D () C:\Program Files (x86)\WinHTTrack
2014-03-24 19:22 - 2014-03-24 19:22 - 00000000 ____D () C:\Users\Hnanda\Desktop\Skola
2014-03-24 15:57 - 2014-03-24 15:57 - 00000000 ____D () C:\Users\Hnanda\Downloads\Seminář
2014-03-23 13:47 - 2014-02-12 22:20 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Google
2014-03-23 13:47 - 2014-02-12 22:20 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-23 13:34 - 2014-02-12 21:31 - 00000000 ___RD () C:\Users\Hnanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-23 13:27 - 2014-03-23 13:26 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\DropboxMaster
2014-03-23 13:26 - 2014-03-23 13:26 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-03-23 12:25 - 2014-02-12 23:06 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-23 12:20 - 2014-03-23 12:20 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-03-23 12:20 - 2014-03-23 12:19 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-03-23 12:20 - 2009-07-14 16:37 - 00000000 ____D () C:\Windows\ShellNew
2014-03-23 12:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-03-23 12:19 - 2014-02-12 23:06 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-03-23 12:19 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2014-03-22 17:07 - 2014-03-22 17:06 - 00000000 ____D () C:\Users\Hnanda\Desktop\Principy dat.syst‚m…
2014-03-21 16:28 - 2014-03-21 15:00 - 00000000 ____D () C:\Users\Hnanda\Desktop\XTB
2014-03-21 16:21 - 2014-02-16 23:41 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Adobe
2014-03-21 16:20 - 2014-02-13 07:47 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-21 16:20 - 2014-02-13 07:47 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-21 15:02 - 2014-03-06 14:22 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-03-20 21:32 - 2014-02-13 23:20 - 00000000 ____D () C:\Windows\Minidump
2014-03-20 21:32 - 2014-02-12 21:04 - 00000000 ____D () C:\Windows\Panther
2014-03-20 21:31 - 2014-03-20 21:31 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-20 21:31 - 2014-03-20 21:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-20 14:14 - 2014-03-20 14:13 - 00000000 ____D () C:\Windows\SysWOW64\C2MP
2014-03-20 13:24 - 2014-02-17 15:03 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-19 13:40 - 2014-02-13 07:43 - 00000000 ____D () C:\Program Files (x86)\DsNET Corp
2014-03-19 11:01 - 2014-02-12 22:20 - 00111520 _____ () C:\Users\Hnanda\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-19 11:01 - 2009-07-14 05:45 - 05060016 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-19 11:00 - 2014-03-19 10:50 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO
2014-03-19 10:59 - 2014-03-19 10:59 - 00003164 _____ () C:\Windows\System32\Tasks\UNELEVATE_18131
2014-03-19 10:49 - 2014-03-19 10:49 - 00004506 _____ () C:\Windows\System32\Tasks\ShopperPro
2014-03-19 10:49 - 2014-03-19 10:49 - 00003572 _____ () C:\Windows\System32\Tasks\ShopperProJSUpd
2014-03-19 10:49 - 2014-03-19 10:49 - 00003496 _____ () C:\Windows\System32\Tasks\SPDriver
2014-03-19 10:49 - 2014-03-19 10:49 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-03-19 10:47 - 2014-03-19 10:47 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\CrashRpt
2014-03-19 10:47 - 2014-03-19 10:47 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-19 10:46 - 2014-03-19 10:46 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-19 10:46 - 2014-03-19 10:46 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-17 15:04 - 2014-03-17 15:04 - 00147360 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-03-14 22:54 - 2014-02-13 07:40 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-03-13 16:01 - 2014-03-13 15:59 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files\iTunes
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files\iPod
2014-03-13 15:59 - 2014-03-13 15:59 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\ProgramData\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files\Bonjour
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-03-13 15:58 - 2014-03-13 15:58 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-03-12 22:35 - 2014-02-12 23:02 - 00000000 ____D () C:\Hry
2014-03-12 22:27 - 2014-03-12 22:23 - 00000000 ____D () C:\Users\Hnanda\.android
2014-03-12 20:52 - 2014-02-12 22:11 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 20:51 - 2014-02-12 22:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 20:51 - 2014-02-12 22:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 23:08 - 2009-07-14 05:45 - 00026928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-11 23:08 - 2009-07-14 05:45 - 00026928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-11 15:24 - 2014-03-11 15:24 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-11 15:24 - 2014-03-11 15:24 - 00000000 ____D () C:\Windows\system32\NV
2014-03-11 15:24 - 2014-02-12 22:57 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-11 07:52 - 2014-03-11 07:52 - 00000246 _____ () C:\Users\Hnanda\Documents\sasd.txt
2014-03-10 11:40 - 2014-02-16 17:01 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Thunderbird
2014-03-09 12:45 - 2014-03-09 12:45 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Jpeg Resampler
2014-03-09 12:45 - 2014-03-09 12:45 - 00000000 ____D () C:\Program Files (x86)\JpegResampler2010
2014-03-08 00:00 - 2014-02-21 19:37 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\vlc
2014-03-07 23:40 - 2014-02-21 19:36 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-03-06 14:51 - 2014-02-15 20:46 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\Facebook
2014-03-05 19:16 - 2014-02-19 09:39 - 00001380 _____ () C:\Users\Hnanda\rgmnr
2014-03-05 09:26 - 2014-03-26 22:33 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-05 09:26 - 2014-03-26 22:33 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-03-26 22:33 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-04 15:35 - 2014-03-11 15:19 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-04 15:35 - 2014-03-11 15:19 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00484296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00409544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00377688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-04 15:35 - 2014-03-11 15:19 - 00033736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-03-04 15:35 - 2014-02-19 09:13 - 14709720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-04 15:35 - 2014-02-19 09:13 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-03-04 15:35 - 2014-02-12 22:40 - 03093280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-03-04 15:35 - 2014-02-12 22:40 - 02715264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-04 15:35 - 2014-02-12 22:40 - 00947808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-03-04 15:35 - 2014-02-12 22:40 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-04 15:35 - 2014-02-12 22:40 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-03-04 15:35 - 2014-02-12 22:40 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-03-04 14:06 - 2014-02-12 22:54 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-03-04 14:06 - 2014-02-12 22:54 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin
2014-03-04 14:05 - 2014-02-12 22:54 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 01075032 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-03-04 14:05 - 2014-02-12 22:54 - 00607064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\oemdspif.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-03-04 14:05 - 2014-02-12 22:54 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-27 16:42 - 2014-02-27 16:42 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-02-27 16:42 - 2014-02-12 22:11 - 00000000 ____D () C:\Users\Hnanda\AppData\Roaming\Adobe
2014-02-27 05:06 - 2014-02-27 05:06 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-02-25 20:51 - 2014-02-25 20:51 - 00000000 ____D () C:\Users\Hnanda\AppData\Local\PunkBuster
2014-02-25 20:27 - 2014-02-25 19:47 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-25 20:25 - 2014-02-25 20:23 - 00840264 _____ () C:\Windows\SysWOW64\pb_services.exe
2014-02-25 18:41 - 2014-02-12 21:39 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-25 18:23 - 2014-02-25 18:23 - 00000256 _____ () C:\Windows\game.ini
2014-02-25 18:11 - 2014-02-25 18:11 - 00000000 __SHD () C:\Windows\ftpcache
2014-02-24 17:39 - 2014-02-12 22:48 - 00000000 ___RD () C:\Users\Hnanda\Documents\

Some content of TEMP:
====================
C:\Users\Hnanda\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9q0tvl.dll
C:\Users\Hnanda\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-03-20 12:45

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:465.66 GB) (Free:389.32 GB) NTFS

Available physical RAM: 1898.79 MB
Total physical RAM: 3957.6 MB
Percentage of memory in use: 52%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 9ED40981)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Hnanda\Desktop" je 35 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncigmytSrv
C:\Windows\inf\mncigmyt.vbe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mnconwwpSrv
C:\Windows\inf\mnconwwp.vbe [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Ranga · #8 Příspěvek od **Ranga** » 27 bře 2014 06:54

MBAM jsem zkusil a nepomohl

#9 Příspěvek od **Rudy** » 27 bře 2014 17:33

Jak je na tom váš oper. systém s legalitou?

Ranga · #10 Příspěvek od **Ranga** » 27 bře 2014 20:05

Dobrý

#11 Příspěvek od **Rudy** » 27 bře 2014 20:37

OK. Dejte log z OTL:

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Ranga · #12 Příspěvek od **Ranga** » 27 bře 2014 22:08

Už jsem to spustil, ale trvá to nějak dlouho je to standartní postup?

Ranga · #13 Příspěvek od **Ranga** » 27 bře 2014 22:29

OTL Extras logfile created on: 27.3.2014 22:03:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hnanda\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,86 Gb Total Physical Memory | 1,95 Gb Available Physical Memory | 50,51% Memory free
7,73 Gb Paging File | 5,20 Gb Available in Paging File | 67,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 388,61 Gb Free Space | 83,45% Space Free | Partition Type: NTFS

Computer Name: HNANDA-PC | User Name: Hnanda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)

[HKEY_USERS\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Classes\<extension>]
.html [@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03DD40E7-41F4-4557-8879-CD1CCE940DA5}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{1A7CD968-3A35-411E-9AC3-47B55FA2103F}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{286DBDAD-C151-4358-9797-9ABA3BFF71AA}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{2F167698-0007-454A-A0F4-B7FD2C0CB430}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{3BDD4775-A185-44F8-8CEC-AD95E1C7481A}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{3EB0B75E-B6EA-4082-81B2-97591F6926B5}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{6C099F47-134D-4C2B-BEFA-00F34FE37E6C}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{78C5DF46-4E4A-46B1-B331-DF1F7E86C61E}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{91977D0C-3AD1-40C0-9A37-20E2645D1515}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{955F3CC8-136E-4D17-9C1C-143D2047C8AF}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{9602D918-B3BA-42C6-986E-640341E770C0}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{9A636027-AD93-4B4C-9582-F2DDD6CD1E16}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{AAB1DA1C-5D63-4B06-A072-7B2C0F52DA70}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{ABA86CF3-6FEE-4522-B305-4C34CFF00B35}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{C294B2C0-1D68-4A40-9845-CA29EA38ED47}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{C4F705BF-78DC-4335-9049-26C70FC542C8}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{DA04D807-B48D-466B-9347-04E9B27648D9}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{E3968480-9E27-450C-BB3E-23EF3C9163FB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{F5710668-84E7-412D-9EC5-B701B7AE3937}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03B16116-25A2-4BCC-9228-28A5FE87B3E6}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{07A28660-52CC-4BFD-AD8F-AACEDAF2ED60}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{115E6C06-BD39-44BB-88B0-5F8F6FFBEDD9}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{32BAFCEC-2362-4F21-9E11-4D3D0521BC51}" = protocol=17 | dir=in | app=c:\users\hnanda\appdata\roaming\dropbox\bin\dropbox.exe |
"{3492207F-1A8D-4242-A4D5-ACEEB32E45E5}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{39BB3E68-9902-405E-AB55-38DCCFCA3415}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{3AB3258F-0E1B-48AB-A1CA-DC6F48552E18}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{4A627950-828D-4728-8E32-4394DC83876C}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{536B88E5-1D5D-47BE-9FF0-5D898E406691}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{54D0D45F-5C97-4EBC-9B6B-C8256EF5D522}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{563E47AC-90AF-486E-AC85-B5F2D7116636}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{63503DA8-105A-48B3-95DF-3A3CFD0E198F}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{725417DB-F61F-4940-B210-396EA366BE23}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{7EE448F0-64E2-4BD1-AFF9-FA0FB245C2F6}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{8BE5E19C-B8BE-4B43-964C-9DB40A753874}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{98918A08-31C0-4A6E-B5B7-304690BE63EA}" = protocol=6 | dir=in | app=c:\users\hnanda\appdata\roaming\dropbox\bin\dropbox.exe |
"{9C59165D-979B-4453-87DF-1E2CEB02710E}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{A2DB0407-44D2-469B-88A0-D850F920D1A3}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{A3EED0F9-E98D-40D6-BDB7-0D01DBA194CB}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{BA93343D-ED6E-47BE-A253-761877CBA914}" = protocol=6 | dir=in | app=c:\hry\heartstone\battle.net\battle.net.exe |
"{BE231C0D-0119-4517-AA51-AEFB9B37FC33}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{C00E7846-C9FF-4EFD-BC2E-DA0F49E965E1}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{C0C42CBF-F74A-4449-A11F-0FC6FDB9051D}" = protocol=17 | dir=in | app=c:\hry\heartstone\battle.net\battle.net.exe |
"{C6AE8391-EEE7-460C-9924-1A62B0CD80ED}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{CF2A0AE5-D9CA-4020-897B-3EE1BD8D0FCD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D218A971-55CF-4F7A-BCB8-FBC780FF9F09}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{D4ADC7EF-9F84-4973-89F2-598A07368ADF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E12483DB-DAA2-4B2C-9A41-6B797F6EB7DF}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{E14BB5A6-F653-4E0A-8C24-C8BE5B5A089A}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{E3C4C9AD-C583-4CC9-A996-9FE22E54E914}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{EF66AAA2-12B9-496A-8195-072A8B66E92C}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"TCP Query User{04C07AD1-C403-487B-AD75-3716E5E1646D}C:\hry\warthunder\launcher.exe" = protocol=6 | dir=in | app=c:\hry\warthunder\launcher.exe |
"TCP Query User{1F885606-FDCD-49B7-84A4-03B8AA7CC92B}C:\hry\warthunder\aces.exe" = protocol=6 | dir=in | app=c:\hry\warthunder\aces.exe |
"TCP Query User{1FA1D4D1-AD7D-48DD-A940-7141D7E36414}C:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"TCP Query User{2DC9A849-DE87-4BEB-993F-4A07E787EFEB}C:\hry\warthunder\aces.exe" = protocol=6 | dir=in | app=c:\hry\warthunder\aces.exe |
"TCP Query User{41E680BC-A453-4B70-B697-94D1C1EB0A80}C:\hry\cod2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\hry\cod2\cod2mp_s.exe |
"TCP Query User{82938033-1293-46DD-8469-7F15815B76C2}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"TCP Query User{D7E972AF-2A55-496E-B7BC-AAE648BEA94B}C:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"TCP Query User{E541FB99-ADB1-4FD5-BFA7-8E9679BF7B71}C:\hry\cod2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\hry\cod2\cod2mp_s.exe |
"UDP Query User{0245A3AF-450D-4F54-942B-3C4BF30A7699}C:\hry\cod2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\hry\cod2\cod2mp_s.exe |
"UDP Query User{0CFD83E0-AB32-4656-ADD2-DA96D9720147}C:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"UDP Query User{1C3E4EA4-D7D6-4F28-A598-4D35B7EB1EE5}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"UDP Query User{7946A65B-A4C3-4626-B1F5-EB1B730A933C}C:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"UDP Query User{84F10CB0-7224-4EDB-9B22-4DCF9BB58865}C:\hry\warthunder\aces.exe" = protocol=17 | dir=in | app=c:\hry\warthunder\aces.exe |
"UDP Query User{9E5E6875-F207-4A0A-B0E9-3662990A131A}C:\hry\warthunder\aces.exe" = protocol=17 | dir=in | app=c:\hry\warthunder\aces.exe |
"UDP Query User{CBA5A410-773B-4C0A-89AB-B3123A0893E8}C:\hry\cod2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\hry\cod2\cod2mp_s.exe |
"UDP Query User{F65A9DFE-9431-4728-96CF-B9CA62587214}C:\hry\warthunder\launcher.exe" = protocol=17 | dir=in | app=c:\hry\warthunder\launcher.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series" = Canon MP640 series MP Drivers
"{181BBF43-CA17-4E1A-A78D-81E67A57B8A4}" = Software Intel® PROSet/Wireless WiFi
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = MPC-HC 1.7.2 (64-bit)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{787136D2-F0F8-4625-AA3F-72D7795AC842}" = Apple Mobile Device Support
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0405-1000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0015-0416-1000-0000000FF1CE}" = Microsoft Access MUI (Portuguese (Brazil)) 2013
"{90150000-0016-0405-1000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0016-0416-1000-0000000FF1CE}" = Microsoft Excel MUI (Portuguese (Brazil)) 2013
"{90150000-0017-0405-1000-0000000FF1CE}" = Microsoft SharePoint Designer MUI (Czech) 2013
"{90150000-0018-0405-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0018-0416-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013
"{90150000-0019-0405-1000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-0019-0416-1000-0000000FF1CE}" = Microsoft Publisher MUI (Portuguese (Brazil)) 2013
"{90150000-001A-0405-1000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001A-0416-1000-0000000FF1CE}" = Microsoft Outlook MUI (Portuguese (Brazil)) 2013
"{90150000-001B-0405-1000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001B-0416-1000-0000000FF1CE}" = Microsoft Word MUI (Portuguese (Brazil)) 2013
"{90150000-001F-0405-1000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-0416-1000-0000000FF1CE}" = Revisores de Texto do Microsoft Office 2013 – Português do Brasil
"{90150000-001F-041B-1000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-002C-0416-1000-0000000FF1CE}" = Microsoft Office Proofing (Portuguese (Brazil)) 2013
"{90150000-0044-0405-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-0044-0416-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Portuguese (Brazil)) 2013
"{90150000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-006E-0416-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Portuguese (Brazil)) 2013
"{90150000-0090-0405-1000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-0090-0416-1000-0000000FF1CE}" = Microsoft DCF MUI (Portuguese (Brazil)) 2013
"{90150000-00A1-0405-1000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00A1-0416-1000-0000000FF1CE}" = Microsoft OneNote MUI (Portuguese (Brazil)) 2013
"{90150000-00BA-0405-1000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00BA-0416-1000-0000000FF1CE}" = Microsoft Groove MUI (Portuguese (Brazil)) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2013
"{90150000-00C1-0416-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2013
"{90150000-00E1-0405-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E1-0416-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Portuguese (Brazil)) 2013
"{90150000-00E2-0405-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-00E2-0416-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Portuguese (Brazil)) 2013
"{90150000-0100-0405-1000-0000000FF1CE}" = Microsoft Office O MUI (Czech) 2013
"{90150000-0101-0405-1000-0000000FF1CE}" = Microsoft X MUI (Czech) 2013
"{90150000-012B-0405-1000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{90150000-012B-0416-1000-0000000FF1CE}" = Microsoft Lync MUI (Portuguese (Brazil)) 2013
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 335.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 335.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.8.2.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 11.10.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 11.10.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 11.10.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.20
"{B8BA155B-1E75-405F-9CB4-8A99615D09DC}" = iTunes
"{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"99841829BE839365AA67B2AD0E50D371F59F8A1E" = Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1)
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Office15.OMUI.cs-cz" = Microsoft Office Language Pack 2013 - Czech/čeština
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 5.01 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B9F87E8-AB27-E25D-D868-88D34DCF1710}_is1" = Windows 7 Activator version for Windows
"{5B7EF375-70C7-4349-9DD2-99FF487F5078}" = Z400 48Wh battery
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6F4B8EA6-4546-4160-A05F-0706F7DC1EFF}" = Savu Mouse
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.13
"{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}" = Call of Duty(R) 2 Patch 1.3
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}" = Apple Application Support
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C13E90B0-4E1C-11DB-6784-0152EAA218BE}" = Call of Duty(R) 2 Patch 1.3
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"{D9795328-CA92-D37D-6509- DD2629BEE05}_is1" = Windows 7 Activator version for Windows
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}" = Google Drive
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"aTube Catcher" = aTube Catcher
"Avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"DAEMON Tools Lite" = DAEMON Tools Lite
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"Inkscape" = Inkscape 0.48.4
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"iWebar" = iWebar
"JpegResampler2010_is1" = Jpeg Resampler Vs 6+
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 10.3.0
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.00.0.1000
"Opera 20.0.1387.82" = Opera Stable 20.0.1387.82
"PunkBusterSvc" = PunkBuster Services
"RocketDock_is1" = RocketDock 1.3.5
"ShopperPro" = Shopper-Pro
"Steam" = Steam
"VLC media player" = VLC media player 2.1.3
"Windows 7 - Codec Pack" = Windows 7 Codec Pack 4.0.8

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 27.3.2014 1:58:04 | Computer Name = Hnanda-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 27.3.2014 7:20:42 | Computer Name = Hnanda-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 27.3.2014 14:08:39 | Computer Name = Hnanda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: szndesktop.exe, verze: 0.0.0.0, časové razítko:
0x5167c21b Název chybujícího modulu: lightspeed.dll, verze: 0.0.0.0, časové razítko:
0x515061b5 Kód výjimky: 0xc0000005 Posun chyby: 0x0007c6ca ID chybujícího procesu:
0xeec Čas spuštění chybující aplikace: 0x01cf49ae9866370e Cesta k chybující aplikaci:
C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe Cesta k chybujícímu
modulu: C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\lightspeed.dll ID zprávy:
d2465ae8-b5da-11e3-91c7-20898496aa9a

Error - 27.3.2014 14:20:35 | Computer Name = Hnanda-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 27.3.2014 14:20:42 | Computer Name = Hnanda-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 27.3.2014 14:20:42 | Computer Name = Hnanda-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 27.3.2014 14:20:42 | Computer Name = Hnanda-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 27.3.2014 14:20:45 | Computer Name = Hnanda-PC | Source = System Restore | ID = 8210
Description =

Error - 27.3.2014 14:47:45 | Computer Name = Hnanda-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 27.3.2014 14:56:39 | Computer Name = Hnanda-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16533 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: dd0 Čas spuštění: 01cf49edcb3e80a0 Čas ukončení: 6 Cesta k aplikaci: C:\Program
Files (x86)\Internet Explorer\iexplore.exe ID hlášení: 7fe11e55-b5e1-11e3-b1d0-6817292dea32

[ System Events ]
Error - 27.3.2014 14:05:49 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:08:33 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:08:33 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:08:58 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:08:58 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:20:40 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 14:20:44 | Computer Name = Hnanda-PC | Source = Server | ID = 2505
Description = Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{458D5209-AA8C-469C-8E32-CD42FF60C037},
protože jiný počítač v síti má stejný název. Server nelze spustit.

Error - 27.3.2014 14:20:44 | Computer Name = Hnanda-PC | Source = NetBT | ID = 4321
Description = Název HNANDA-PC :20 nelze zaregistrovat v rozhraní s IP adresou
192.168.2.100. Počítač s IP adresou 192.168.2.109 nepovolil získání názvu tímto počítačem.

Error - 27.3.2014 15:40:45 | Computer Name = Hnanda-PC | Source = Service Control Manager | ID = 7023
Description = Služba Služba Oznámení platformy SPP byla ukončena s následující chybou:
%%5

Error - 27.3.2014 16:40:45 | Computer Name = Hnanda-PC | Source = Service Control Manager | ID = 7023
Description = Služba Služba Oznámení platformy SPP byla ukončena s následující chybou:
%%5

< End of report >

Ranga · #14 Příspěvek od **Ranga** » 27 bře 2014 22:33

OTL logfile created on: 27.3.2014 22:03:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Hnanda\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,86 Gb Total Physical Memory | 1,95 Gb Available Physical Memory | 50,51% Memory free
7,73 Gb Paging File | 5,20 Gb Available in Paging File | 67,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 388,61 Gb Free Space | 83,45% Space Free | Partition Type: NTFS

Computer Name: HNANDA-PC | User Name: Hnanda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.03.27 21:42:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Hnanda\Desktop\OTL.exe
PRC - [2014.03.19 10:59:45 | 001,380,704 | ---- | M] () -- C:\Program Files (x86)\Opera\20.0.1387.82_1\opera_crashreporter.exe
PRC - [2014.03.19 10:59:44 | 046,144,352 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\20.0.1387.82_1\opera.exe
PRC - [2014.03.05 09:24:48 | 000,857,912 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014.03.05 09:24:46 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014.03.05 09:24:40 | 007,430,968 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014.02.25 20:27:39 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2014.02.12 22:51:18 | 003,767,096 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.02.12 22:51:18 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.02.05 10:32:47 | 002,234,144 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.02.05 10:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.08.29 20:36:02 | 000,048,200 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
PRC - [2013.04.12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2012.09.10 16:22:32 | 000,872,048 | ---- | M] (ROCCAT GmbH) -- C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
PRC - [2012.05.21 15:26:26 | 000,291,648 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2012.02.28 17:20:02 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012.02.28 17:19:56 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012.02.28 17:19:46 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2010.08.23 09:11:28 | 000,206,240 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
PRC - [2007.09.02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.exe

========== Modules (No Company Name) ==========

MOD - [2014.03.19 10:59:47 | 000,908,640 | ---- | M] () -- C:\Program Files (x86)\Opera\20.0.1387.82_1\libGLESv2.dll
MOD - [2014.03.19 10:59:47 | 000,108,896 | ---- | M] () -- C:\Program Files (x86)\Opera\20.0.1387.82_1\libEGL.dll
MOD - [2014.03.19 10:59:46 | 000,895,328 | ---- | M] () -- C:\Program Files (x86)\Opera\20.0.1387.82_1\ffmpegsumo.dll
MOD - [2014.03.19 10:59:45 | 001,380,704 | ---- | M] () -- C:\Program Files (x86)\Opera\20.0.1387.82_1\opera_crashreporter.exe
MOD - [2014.03.04 15:35:23 | 000,014,280 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll
MOD - [2014.02.12 22:51:19 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.02.12 20:58:32 | 000,073,544 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014.02.12 20:58:10 | 001,044,808 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013.08.29 20:36:02 | 000,048,200 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
MOD - [2013.04.29 10:54:54 | 001,663,000 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
MOD - [2013.04.12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2013.03.29 12:37:34 | 000,059,384 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\15717libfoxloader.dll
MOD - [2013.03.25 15:39:52 | 000,894,968 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2010.08.18 21:34:36 | 000,178,176 | ---- | M] () -- C:\Program Files (x86)\JpegResampler2010\JRcm.dll
MOD - [2007.09.02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.exe
MOD - [2007.09.02 13:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014.02.12 22:51:18 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014.02.05 10:32:24 | 016,941,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2012.06.25 16:06:30 | 003,325,232 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012.06.25 16:06:08 | 000,272,688 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012.06.25 16:05:54 | 000,628,016 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012.06.25 16:05:28 | 000,149,296 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012.04.23 17:23:28 | 000,135,952 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012.03.15 07:09:20 | 000,659,976 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2012.02.02 22:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.03.12 20:51:59 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.03.05 09:24:48 | 000,857,912 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014.03.05 09:24:46 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014.02.25 20:27:39 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2014.02.08 04:18:42 | 000,569,024 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.02.05 10:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.10.23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.03.27 10:32:22 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012.02.28 17:20:02 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012.02.28 17:19:56 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012.02.28 17:19:46 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.03.27 20:20:03 | 000,119,512 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.03.19 10:46:31 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2014.03.05 09:26:18 | 000,063,192 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014.03.05 09:26:04 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2014.03.04 15:35:23 | 000,033,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2014.02.12 22:51:19 | 001,038,072 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.02.12 22:51:19 | 000,421,704 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.02.12 22:51:19 | 000,207,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.02.12 22:51:19 | 000,092,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014.02.12 22:51:19 | 000,080,184 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014.02.12 22:51:19 | 000,078,648 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.02.12 22:51:19 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.02.12 21:39:23 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2014.02.12 21:39:23 | 000,030,816 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2013.12.27 19:42:26 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013.03.18 16:51:08 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.08.27 15:48:34 | 008,227,216 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2012.08.27 10:52:42 | 000,448,312 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012.08.27 10:52:40 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2012.08.21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012.06.03 08:33:44 | 011,499,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012.05.21 15:25:30 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012.05.21 15:25:30 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012.05.21 15:25:30 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2012.03.27 10:09:54 | 014,748,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.03.15 06:02:46 | 000,198,144 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012.03.15 06:02:46 | 000,198,144 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012.03.09 20:41:16 | 000,685,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.01.04 16:55:16 | 000,313,448 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2011.12.06 19:23:08 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.11.10 01:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010.11.20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.11.20 05:33:36 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 05:32:48 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.20 05:32:48 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 03:07:06 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.03.17 17:42:14 | 000,052,072 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.149\jsdrv.sys -- (SPDRIVER_1.30.1.149)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

[2014.02.16 17:01:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Hnanda\AppData\Roaming\Mozilla\Extensions

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Seznam LiĹˇtiÄŤka - Email = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0\
CHR - Extension: Seznam LiĹˇtiÄŤka - Email = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_1\
CHR - Extension: Seznam LiĹˇtiÄŤka - SlovnĂk = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0\
CHR - Extension: Seznam LiĹˇtiÄŤka - SlovnĂk = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_1\
CHR - Extension: YouTube = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: VyhledĂˇvĂˇnĂ Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Closed tabs = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\eonffnnfmbfnmjpaiigdclmfelolemah\1.4_0\
CHR - Extension: Green Tree [FVD] = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gghjhhgopnogfikfjgnmhcmddhhhdojj\2.0_0\
CHR - Extension: Green Tree [FVD] = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gghjhhgopnogfikfjgnmhcmddhhhdojj\2.0_1\
CHR - Extension: avast! Online Security = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2013.75_0\
CHR - Extension: avast! Online Security = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2015.80_0\
CHR - Extension: avast! Online Security = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2016.82_0\
CHR - Extension: New Tab Page for FVD Speed Dial = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\idgeoanibcknhniccgaoaiolihidecjn\2.0.1_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\
CHR - Extension: Speed Dial [FVD] - New Tab Page, 3D, Sync... = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.5_0\
CHR - Extension: Kontrola e-mailu Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: PenÄ›Ĺľenka Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: PenÄ›Ĺľenka Google = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: MĹŻj motiv Chrome = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic\2.0_0\
CHR - Extension: Seznam LiĹˇtiÄŤka - RychlĂˇ volba = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.6.5_0\
CHR - Extension: Gmail = C:\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtsFT] C:\Windows\RTFTrack.exe (Realtek semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SynLenovoGestureMgr] C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe (Synaptics)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Dolby Home Theater v4] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [ROCCAT Savu Gaming Mouse] C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe (ROCCAT GmbH)
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.149\jsdrv.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [cz.seznam.software.autoupdate] C:\Users\Hnanda\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [cz.seznam.software.szndesktop] C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [RocketDock] C:\Program Files (x86)\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.149\jsdrv.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1529418845-443675186-1241643299-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 79.170.254.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{458D5209-AA8C-469C-8E32-CD42FF60C037}: DhcpNameServer = 192.168.1.100 79.170.254.2
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{52bc0b65-af3d-11e3-902e-6817292dea32}\Shell - "" = AutoRun
O33 - MountPoints2\{52bc0b65-af3d-11e3-902e-6817292dea32}\Shell\AutoRun\command - "" = F:\SETUP.EXE
O33 - MountPoints2\{52bc0b65-af3d-11e3-902e-6817292dea32}\Shell\configure\command - "" = F:\SETUP.EXE
O33 - MountPoints2\{52bc0b65-af3d-11e3-902e-6817292dea32}\Shell\install\command - "" = F:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.ac3acm - ac3acm.acm (fccHandler)
Drivers32:64bit: msacm.l3acm - l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.l3codecp - l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FFDS - ff_vfw.dll ()
Drivers32:64bit: VIDC.LAGS - lagarith.dll ( )
Drivers32:64bit: VIDC.X264 - x264vfw64.dll (x264vfw project)
Drivers32:64bit: VIDC.XVID - xvidvfw.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.divxa32 - C:\Windows\SysWow64\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.l3acm - C:\Windows\SysWow64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\LameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.FMVC - C:\Windows\SysWow64\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.LAGS - C:\Windows\SysWow64\Lagarith.dll ( )
Drivers32: VIDC.X264 - C:\Windows\SysWow64\x264vfw.dll (x264vfw project)
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.03.27 21:42:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Hnanda\Desktop\OTL.exe
[2014.03.27 20:19:34 | 000,119,512 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.03.27 20:19:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014.03.27 20:19:13 | 000,088,280 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014.03.27 20:19:13 | 000,063,192 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014.03.27 20:19:13 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014.03.27 20:03:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
[2014.03.27 19:57:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2014.03.26 22:50:46 | 000,000,000 | ---D | C] -- C:\FRST
[2014.03.26 22:33:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014.03.26 22:33:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014.03.26 22:07:48 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.03.26 15:52:38 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\.thumbnails
[2014.03.26 15:39:30 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\fontconfig
[2014.03.26 15:39:29 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\gegl-0.2
[2014.03.26 15:39:29 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\.gimp-2.8
[2014.03.26 15:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2014.03.24 22:12:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinHTTrack
[2014.03.24 19:22:34 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\Desktop\Skola
[2014.03.23 13:48:12 | 000,000,000 | R--D | C] -- C:\Users\Hnanda\Disk Google
[2014.03.23 13:27:10 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\Dropbox
[2014.03.23 13:26:45 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\DropboxMaster
[2014.03.23 13:26:34 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2014.03.23 13:26:13 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\Dropbox
[2014.03.23 12:24:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2014.03.23 12:24:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2014.03.23 12:20:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2014.03.23 12:20:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014.03.23 12:19:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2014.03.22 17:06:13 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\Desktop\Principy dat.syst‚m…
[2014.03.21 15:00:11 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\Desktop\XTB
[2014.03.20 21:31:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014.03.20 21:31:03 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014.03.20 14:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2014.03.20 14:24:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2014.03.20 14:14:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack
[2014.03.20 14:13:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\C2MP
[2014.03.19 13:40:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
[2014.03.19 10:50:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iWebar
[2014.03.19 10:50:27 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\Installer
[2014.03.19 10:50:26 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\GOOBZO
[2014.03.19 10:50:25 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014.03.19 10:49:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ShopperPro
[2014.03.19 10:49:33 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\ShopperPro
[2014.03.19 10:49:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ShopperPro
[2014.03.19 10:47:43 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\CrashRpt
[2014.03.19 10:47:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seznam.cz
[2014.03.19 10:47:16 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz
[2014.03.19 10:46:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014.03.19 10:46:31 | 000,283,064 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2014.03.19 10:46:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2014.03.13 15:59:46 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\Apple Computer
[2014.03.13 15:59:46 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\Apple Computer
[2014.03.13 15:59:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2014.03.13 15:59:33 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2014.03.13 15:59:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2014.03.13 15:59:14 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014.03.13 15:59:12 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014.03.13 15:59:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2014.03.13 15:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2014.03.13 15:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2014.03.13 15:58:45 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Local\Apple
[2014.03.13 15:58:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2014.03.13 15:58:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2014.03.13 15:58:30 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2014.03.13 15:58:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2014.03.13 15:58:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2014.03.13 15:58:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2014.03.12 22:23:55 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\.android
[2014.03.11 15:24:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NV
[2014.03.11 15:24:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NV
[2014.03.11 15:19:02 | 031,474,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2014.03.11 15:19:02 | 023,716,640 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2014.03.11 15:19:02 | 018,302,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2014.03.11 15:19:02 | 015,783,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2014.03.11 15:19:02 | 011,589,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2014.03.11 15:19:02 | 009,690,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2014.03.11 15:19:02 | 001,885,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433523.dll
[2014.03.11 15:19:02 | 001,516,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433523.dll
[2014.03.11 15:19:02 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2014.03.11 15:19:02 | 000,877,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2014.03.11 15:19:02 | 000,863,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2014.03.11 15:19:02 | 000,846,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2014.03.11 15:19:02 | 000,484,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2014.03.11 15:19:02 | 000,409,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2014.03.11 15:19:02 | 000,377,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2014.03.11 15:19:02 | 000,353,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2014.03.11 15:19:02 | 000,333,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2014.03.11 15:19:02 | 000,305,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2014.03.11 15:19:02 | 000,033,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys
[2014.03.11 15:19:01 | 025,255,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2014.03.11 15:19:01 | 017,755,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2014.03.11 15:19:01 | 017,561,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2014.03.11 15:19:01 | 011,636,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2014.03.11 15:19:01 | 009,728,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2014.03.11 15:19:01 | 003,143,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2014.03.11 15:19:01 | 002,958,792 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2014.03.11 15:19:01 | 002,783,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2014.03.11 15:19:01 | 002,411,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2014.03.09 12:45:23 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\Jpeg Resampler
[2014.03.09 12:45:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jpeg Resampler 2010
[2014.03.09 12:45:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JpegResampler2010
[2014.03.07 23:40:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014.03.06 14:22:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2014.02.27 16:42:12 | 000,000,000 | ---D | C] -- C:\Users\Hnanda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.03.27 22:05:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.03.27 21:42:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Hnanda\Desktop\OTL.exe
[2014.03.27 21:40:45 | 000,026,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.03.27 21:40:45 | 000,026,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.03.27 21:38:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.03.27 21:25:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.03.27 20:20:03 | 000,119,512 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.03.27 19:53:33 | 001,576,554 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.03.27 19:53:33 | 000,666,444 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.03.27 19:53:33 | 000,652,148 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.03.27 19:53:33 | 000,140,108 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.03.27 19:53:33 | 000,121,080 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.03.27 19:48:17 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.03.27 19:47:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.03.27 19:24:53 | 3112,382,464 | -HS- | M] () -- C:\hiberfil.sys
[2014.03.26 15:53:13 | 000,014,813 | ---- | M] () -- C:\Users\Hnanda\AppData\Local\recently-used.xbel
[2014.03.22 13:39:07 | 000,214,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2014.03.22 13:39:07 | 000,214,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2014.03.22 13:13:41 | 000,214,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.03.20 21:35:06 | 000,071,060 | ---- | M] () -- C:\Users\Hnanda\Documents\zaloha registru.reg
[2014.03.20 14:14:41 | 000,001,873 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
[2014.03.19 11:01:29 | 005,060,016 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.03.19 10:46:31 | 000,283,064 | ---- | M] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2014.03.17 15:04:24 | 000,147,360 | -H-- | M] () -- C:\Windows\SysWow64\mlfcache.dat
[2014.03.12 20:51:59 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014.03.12 20:51:59 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.03.05 19:16:49 | 000,001,380 | ---- | M] () -- C:\Users\Hnanda\rgmnr
[2014.03.05 09:26:18 | 000,063,192 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014.03.05 09:26:08 | 000,088,280 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014.03.05 09:26:04 | 000,025,816 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014.03.04 15:35:23 | 031,474,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2014.03.04 15:35:23 | 025,255,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2014.03.04 15:35:23 | 023,716,640 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2014.03.04 15:35:23 | 018,302,384 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2014.03.04 15:35:23 | 017,755,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2014.03.04 15:35:23 | 017,561,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2014.03.04 15:35:23 | 015,783,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2014.03.04 15:35:23 | 014,709,720 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2014.03.04 15:35:23 | 011,636,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2014.03.04 15:35:23 | 011,589,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2014.03.04 15:35:23 | 009,728,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2014.03.04 15:35:23 | 009,690,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2014.03.04 15:35:23 | 003,143,456 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2014.03.04 15:35:23 | 003,093,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2014.03.04 15:35:23 | 002,958,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2014.03.04 15:35:23 | 002,783,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2014.03.04 15:35:23 | 002,715,264 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2014.03.04 15:35:23 | 002,411,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2014.03.04 15:35:23 | 001,885,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433523.dll
[2014.03.04 15:35:23 | 001,516,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433523.dll
[2014.03.04 15:35:23 | 000,947,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2014.03.04 15:35:23 | 000,892,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2014.03.04 15:35:23 | 000,877,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2014.03.04 15:35:23 | 000,863,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2014.03.04 15:35:23 | 000,846,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2014.03.04 15:35:23 | 000,832,936 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2014.03.04 15:35:23 | 000,484,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2014.03.04 15:35:23 | 000,409,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2014.03.04 15:35:23 | 000,377,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2014.03.04 15:35:23 | 000,353,504 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2014.03.04 15:35:23 | 000,333,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2014.03.04 15:35:23 | 000,305,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2014.03.04 15:35:23 | 000,174,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2014.03.04 15:35:23 | 000,148,016 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2014.03.04 15:35:23 | 000,033,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys
[2014.03.04 15:35:23 | 000,024,544 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2014.03.04 14:06:00 | 006,714,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2014.03.04 14:06:00 | 003,497,816 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2014.03.04 14:05:58 | 002,558,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2014.03.04 14:05:58 | 000,607,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\oemdspif.dll
[2014.03.04 14:05:58 | 000,064,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2014.03.04 14:05:57 | 001,075,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2014.03.04 14:05:57 | 000,386,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2014.03.04 14:05:57 | 000,067,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2014.03.04 14:05:53 | 003,649,185 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2014.02.27 05:06:19 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_wpdcomp_01_09_00.Wdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.03.27 21:49:38 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.03.26 15:53:13 | 000,014,813 | ---- | C] () -- C:\Users\Hnanda\AppData\Local\recently-used.xbel
[2014.03.21 16:20:05 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014.03.20 21:35:02 | 000,071,060 | ---- | C] () -- C:\Users\Hnanda\Documents\zaloha registru.reg
[2014.03.20 14:14:41 | 000,001,873 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
[2014.03.17 15:04:24 | 000,147,360 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2014.03.13 15:58:44 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2014.02.27 05:06:19 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_wpdcomp_01_09_00.Wdf
[2014.02.25 20:23:28 | 000,840,264 | ---- | C] () -- C:\Windows\SysWow64\pb_services.exe
[2014.02.25 19:48:07 | 000,214,520 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.02.25 19:47:46 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2014.02.25 18:23:21 | 000,000,256 | ---- | C] () -- C:\Windows\game.ini
[2014.02.19 09:39:27 | 000,001,380 | ---- | C] () -- C:\Users\Hnanda\rgmnr
[2014.02.18 21:25:44 | 000,000,163 | ---- | C] () -- C:\Windows\Reimage.ini
[2014.02.13 07:56:30 | 000,218,200 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2014.02.12 22:48:29 | 001,555,776 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.02.12 22:16:40 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014.02.12 21:50:03 | 000,755,188 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2014.02.12 21:50:02 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2014.02.12 21:49:59 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2014.02.12 21:49:57 | 013,024,768 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2013.08.29 20:36:04 | 000,039,896 | ---- | C] () -- C:\Windows\SysWow64\DiscHandler.exe
[2013.07.26 14:24:22 | 006,275,760 | ---- | C] () -- C:\Windows\SysWow64\avcodec-lav-55.dll
[2013.07.26 14:24:22 | 001,239,216 | ---- | C] () -- C:\Windows\SysWow64\avformat-lav-55.dll
[2013.07.26 14:24:22 | 000,394,416 | ---- | C] () -- C:\Windows\SysWow64\swscale-lav-2.dll
[2013.07.26 14:24:22 | 000,288,944 | ---- | C] () -- C:\Windows\SysWow64\avutil-lav-52.dll
[2013.07.26 14:24:22 | 000,235,184 | ---- | C] () -- C:\Windows\SysWow64\avfilter-lav-3.dll
[2013.07.26 14:24:22 | 000,190,640 | ---- | C] () -- C:\Windows\SysWow64\libbluray.dll
[2013.07.26 14:24:22 | 000,150,192 | ---- | C] () -- C:\Windows\SysWow64\avresample-lav-1.dll
[2013.06.08 12:54:10 | 003,915,776 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll
[2013.06.08 12:53:06 | 000,112,640 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2013.06.08 12:52:30 | 000,271,360 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2013.06.08 12:52:12 | 000,157,184 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2013.06.08 12:52:10 | 000,147,456 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2013.06.08 12:52:10 | 000,099,840 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2013.06.08 12:52:08 | 001,525,760 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2013.06.08 12:52:08 | 000,211,968 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2013.06.08 12:52:08 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2013.06.08 12:52:06 | 000,136,704 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2012.09.29 23:47:28 | 000,000,178 | ---- | C] () -- C:\Windows\SysWow64\Formats.ini

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 04:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.02.12 22:52:37 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\AVAST Software
[2014.02.14 11:23:30 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Battle.net
[2014.03.27 19:19:38 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\DAEMON Tools Lite
[2014.03.27 20:06:03 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Dropbox
[2014.03.27 20:04:50 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\DropboxMaster
[2014.03.27 19:19:58 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\GHISLER
[2014.03.26 22:34:42 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\inkscape
[2014.03.09 12:45:23 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Jpeg Resampler
[2014.02.17 22:23:55 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\LolClient
[2014.02.14 12:36:06 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\MPC-HC
[2014.02.17 15:03:34 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Opera Software
[2014.03.27 19:52:51 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz
[2014.02.27 16:42:12 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014.02.16 17:01:33 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Thunderbird
[2014.03.27 20:16:55 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\TS3Client

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,029,928 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU(36).TXT
[2009.07.14 06:08:49 | 000,032,550 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2014.02.12 22:11:29 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2014.02.12 22:20:19 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.02.12 22:20:20 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.20 05:24:28 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 05:24:28 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 04:16:56 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 04:16:56 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 01:19:22 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 01:19:22 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 01:19:22 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2010.11.20 05:26:00 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2012.06.02 06:32:25 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=456107D69D4EE850A559434F19EFEE65 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_d2beeccacd6d6c07\cryptsvc.dll
[2012.06.04 08:52:35 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=7E7D2DACF65D750D466F36BD3D09AE20 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_d4ab184aca903d4f\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\SysWOW64\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\SysNative\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_d3fc6569b18d7211\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 04:18:26 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2012.06.02 06:25:12 | 000,182,272 | ---- | M] (Microsoft Corporation) MD5=BAF19B633933A9FB4883D27D66C39E9A -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_d22a7e2db457eb07\cryptsvc.dll
[2012.06.02 05:41:59 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=EA8C26ECF1656D9647EF044F115EC6DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_76a05147150ffad1\cryptsvc.dll
[2012.06.02 05:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=F2FDE6C8DBAAD44CC58D1E07E4AF4EED -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_760be2a9fbfa79d1\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2010.11.20 04:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SysWOW64\explorer.exe
[2010.11.20 04:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 05:24:46 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\explorer.exe
[2010.11.20 05:24:46 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010.11.20 05:33:36 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 05:33:36 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTORV.SYS >
[2010.11.20 05:33:40 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\drivers\iaStorV.sys
[2010.11.20 05:33:40 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 05:33:40 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

Ranga · #15 Příspěvek od **Ranga** » 27 bře 2014 22:33

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 07:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_028b374176436a30\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_02756f8b7653d554\lsass.exe
[2012.06.04 08:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2012.06.02 06:30:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=BF63CE11A25F3509129888710D5111FC -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_0309de288f695654\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\SysNative\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe
[2011.11.17 07:42:52 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=D21BD47E528CD62E79311FB5DF0150E6 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_02bb2a0a8fa4d398\lsass.exe

< MD5 for: NDIS.SYS >
[2010.11.20 05:33:46 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010.11.20 05:33:46 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010.11.20 05:27:24 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.20 05:27:24 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.20 04:20:30 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.20 04:20:30 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2010.11.20 05:33:50 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\drivers\nvraid.sys
[2010.11.20 05:33:50 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 05:33:50 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2010.11.20 05:33:50 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\drivers\nvstor.sys
[2010.11.20 05:33:50 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 05:33:50 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 04:21:06 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 04:21:06 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 05:27:26 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 05:27:26 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2013.03.19 03:57:17 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=498E2A20E145199709CD100CDBA8603D -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_0a9a7b3b492b4d05\smss.exe
[2013.03.19 04:20:12 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=7180204786A9DED8723B2D8CF3CDD388 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.21490_none_08a94e494c0cfd0a\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- C:\Windows\SysNative\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_0a5f8ec22fd235a9\smss.exe
[2013.03.19 04:19:03 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=FA64733BD65F52712F0545F56FDB4BE6 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.17273_none_0838504e32dc743c\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2014.03.05 09:24:36 | 000,742,200 | ---- | M] (MalwareBytes) MD5=87829A6F3529D772FA8BF0C2C238D1C6 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010.11.20 05:33:58 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2013.01.03 06:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\SysNative\drivers\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 04:17:50 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 04:17:50 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 05:25:26 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 05:25:26 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.20 05:25:32 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 05:25:32 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2014.03.05 09:24:36 | 000,742,200 | ---- | M] (MalwareBytes) MD5=87829A6F3529D772FA8BF0C2C238D1C6 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.20 05:27:30 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.20 05:27:30 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2010.11.20 04:21:40 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.20 04:21:40 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\System32\spp\tokens\pkeyconfig\*.tmp files -> C:\Windows\System32\spp\tokens\pkeyconfig\*.tmp -> ]
[1 C:\Windows\SysWOW64\spp\tokens\pkeyconfig\*.tmp files -> C:\Windows\SysWOW64\spp\tokens\pkeyconfig\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.02.27 16:42:19 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Adobe
[2014.03.13 16:01:19 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Apple Computer
[2014.02.12 22:52:37 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\AVAST Software
[2014.02.14 11:23:30 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Battle.net
[2014.03.27 19:19:38 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\DAEMON Tools Lite
[2014.03.27 20:06:03 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Dropbox
[2014.03.27 20:04:50 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\DropboxMaster
[2014.03.27 19:19:58 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\GHISLER
[2014.02.12 21:30:54 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Identities
[2014.03.26 22:34:42 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\inkscape
[2014.02.12 21:44:33 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Intel
[2014.03.09 12:45:23 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Jpeg Resampler
[2014.02.17 22:23:55 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\LolClient
[2014.02.12 22:11:34 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Macromedia
[2009.07.14 16:36:38 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Media Center Programs
[2014.03.27 19:19:40 | 000,000,000 | --SD | M] -- C:\Users\Hnanda\AppData\Roaming\Microsoft
[2014.02.16 17:01:33 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Mozilla
[2014.02.14 12:36:06 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\MPC-HC
[2014.02.17 15:03:34 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Opera Software
[2014.03.27 19:52:51 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz
[2014.03.27 22:03:01 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Skype
[2014.02.27 16:42:12 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014.02.16 17:01:33 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\Thunderbird
[2014.03.27 20:16:55 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\TS3Client
[2014.03.08 00:00:53 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\vlc
[2014.02.13 14:26:12 | 000,000,000 | ---D | M] -- C:\Users\Hnanda\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.03.26 19:21:10 | 032,667,896 | ---- | M] (Dropbox, Inc.) -- C:\Users\Hnanda\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014.03.26 19:22:20 | 000,243,632 | ---- | M] (Dropbox, Inc.) -- C:\Users\Hnanda\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014.03.26 19:21:14 | 000,143,904 | ---- | M] (Dropbox, Inc.) -- C:\Users\Hnanda\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013.05.16 14:25:04 | 001,062,472 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\szninstall.exe
[2013.05.16 14:26:24 | 002,589,256 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.04.29 11:53:34 | 000,045,560 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013.04.12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.04.12 09:10:22 | 000,092,664 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2013.04.16 12:52:34 | 000,055,808 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\data\ffinstall\ffkill.exe
[2011.12.19 10:04:28 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\data\ffinstall\reg.exe
[2013.04.16 12:52:36 | 000,077,824 | ---- | M] () -- C:\Users\Hnanda\AppData\Roaming\Seznam.cz\data\ffinstall\regctrl.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.03.27 19:50:02 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
[2014.03.27 22:15:13 | 000,214,520 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2014.03.27 22:15:39 | 000,214,520 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2014.03.27 22:15:39 | 000,214,520 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"RocketDock" = "C:\Program Files (x86)\RocketDock\RocketDock.exe" -- [2007.09.02 13:58:52 | 000,495,616 | ---- | M] ()
"AdobeBridge" =
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2014.03.04 10:19:52 | 003,696,912 | ---- | M] (Disc Soft Ltd)
"cz.seznam.software.autoupdate" = "C:\Users\Hnanda\AppData\Roaming\Seznam.cz\szninstall.exe" -c -- [2013.05.16 14:25:04 | 001,062,472 | ---- | M] ()
"cz.seznam.software.szndesktop" = "C:\Users\Hnanda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -- [2013.04.12 09:10:22 | 000,092,664 | ---- | M] ()
"SPDriver" = C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.149\jsdrv.exe -- [2014.03.17 17:42:14 | 003,212,648 | ---- | M] ()

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.03.27 22:05:32 | 000,000,512 | ---- | M] () MD5=6E24F00C5654D8C40AEF92FFBF230530 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2010.05.29 21:41:56 | 000,114,899 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2013.11.30 17:27:56 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2014.02.10 21:51:14 | 004,500,950 | ---- | M] () -- \Users\Hnanda\Music\MIX vol4\Bassjackers Crackin (Martin Garrix Edit) [Official Video].mp3

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2014.02.20 18:18:18 | 000,000,003 | ---- | M] () -- \7Loader.TAG
[2014.03.19 10:51:56 | 000,571,760 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files (x86)\iWebar\iWebar-codedownloader.exe.vir
[2014.03.19 10:51:34 | 000,144,707 | ---- | M] () -- \AdwCleaner\Quarantine\C\Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.236_0\extensionData\plugins\91_monetizationLoader.js.js.vir
[2014.03.19 10:52:10 | 000,004,774 | ---- | M] () -- \AdwCleaner\Quarantine\C\Windows\System32\Tasks\iWebar-codedownloader.vir
[2014.03.26 22:05:19 | 000,001,744 | ---- | M] () -- \AdwCleaner\Quarantine\C\Windows\Tasks\iWebar-codedownloader.job.vir
[2010.11.20 12:09:38 | 000,004,290 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_73a52105efe44483.manifest
[2010.11.20 14:33:18 | 000,004,338 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6.manifest
[2010.11.20 05:47:38 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_9f5b4b054ec5b9b2.manifest
[2010.11.20 05:47:42 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_da-dk_3c952b2c450bb5b1.manifest
[2010.11.20 05:47:42 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_el-gr_e256edfb35f772d9.manifest
[2010.11.20 05:45:16 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_8197f7f22b00f9df.manifest
[2010.11.20 05:55:06 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_hu-hu_cca4e98c0d18ed33.manifest
[2010.11.20 06:45:12 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_ko-kr_b4ebbb4ce576dc86.manifest
[2010.11.20 05:49:52 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_nb-no_9d7e3c81bd9c0842.manifest
[2010.11.20 05:55:46 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_pl-pl_e1f9e241a3ea7fcb.manifest
[2010.11.20 05:56:28 | 000,004,434 | ---- | M] () --
\cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_pt-br_e44dcce5a27413af.manifest
[2010.11.20 05:54:54 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_pt-pt_e52f9c51a1e3838b.manifest
[2010.11.20 05:54:56 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_ru-ru_2bd2ae1586c511b7.manifest
[2010.11.20 05:55:08 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_sv-se_c7cd988a7dee1c12.manifest
[2010.11.20 05:57:18 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_tr-tr_70dae2d16caa1e03.manifest
[2010.11.20 06:45:20 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_423800cf1ce1f022.manifest
[2010.11.20 05:47:02 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-hk_40e2f95d1dbd62b2.manifest
[2010.11.20 06:44:00 | 000,004,434 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-tw_46343e251a52cc92.manifest
[2010.11.20 06:13:06 | 000,005,799 | ---- | M] () -- \cb3fe997075ea3c497f4b14a\f384e9d92fd47d0399f30dc2\4c809644079ef289413989a5c6\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_9e1494518136c7b5.manifest
[2012.02.16 13:44:38 | 000,000,404 | ---- | M] () -- \Hry\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.77\deploy\assets\storeImages\layout\small_loader.gif
[2012.02.22 23:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.22 23:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.22 23:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2014.02.12 20:58:20 | 000,007,281 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2012.10.01 20:34:40 | 000,268,384 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2012.10.01 20:34:40 | 000,019,048 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.10.01 20:34:38 | 000,019,560 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1046\VSTOLoaderUI.dll
[2010.03.06 09:24:56 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010.03.06 09:24:56 | 000,030,804 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010.03.06 09:24:56 | 000,027,898 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010.03.06 09:24:56 | 000,042,058 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010.03.06 09:24:56 | 000,023,145 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010.03.06 09:24:56 | 000,028,692 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010.03.06 09:24:56 | 000,034,496 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010.03.06 09:24:56 | 000,022,435 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010.03.06 09:24:56 | 000,036,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010.03.06 09:24:56 | 000,026,252 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010.03.06 09:24:56 | 000,020,063 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010.03.06 09:24:56 | 000,024,412 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010.03.06 09:24:56 | 000,029,401 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010.03.06 09:24:56 | 000,019,399 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010.03.06 09:24:56 | 000,025,270 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010.03.06 09:24:56 | 000,042,114 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010.03.06 09:24:56 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010.08.16 10:41:40 | 000,032,958 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010.08.16 10:41:40 | 000,001,847 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010.08.16 10:41:40 | 000,057,685 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010.08.16 10:41:40 | 000,029,336 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010.08.16 10:41:40 | 000,001,341 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010.08.16 10:41:40 | 000,028,643 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010.08.16 10:41:40 | 000,055,918 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010.08.16 10:41:40 | 000,038,308 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010.08.16 10:41:40 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010.08.16 10:41:40 | 000,007,779 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010.08.16 10:41:40 | 000,017,301 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010.08.16 10:41:40 | 000,015,416 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010.08.16 10:41:40 | 000,015,832 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010.08.16 10:41:40 | 000,038,937 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010.08.16 10:41:40 | 000,014,300 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010.08.16 10:41:40 | 000,017,550 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2014.03.19 10:51:56 | 000,571,760 | ---- | M] () -- \Program Files (x86)\iWebar\iWebar-codedownloader.exe
[2014.02.05 10:31:23 | 001,169,184 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.12.20 01:37:56 | 000,065,344 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.12.20 01:37:56 | 000,067,904 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2013.12.20 01:37:44 | 000,073,536 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.12.20 01:37:44 | 000,080,704 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013.10.23 21:07:40 | 000,007,825 | ---- | M] () -- \Program Files (x86)\Steam\remoteui\static\libs\images\ajax-loader.gif
[2012.03.13 12:10:54 | 003,297,128 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 10:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 10:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 10:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 10:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.10.01 20:34:40 | 000,364,128 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2012.10.01 20:34:40 | 000,019,048 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.10.01 20:34:38 | 000,019,560 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1046\VSTOLoaderUI.dll
[2011.03.08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2014.02.05 10:31:23 | 001,169,184 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{5327FD6A-2317-4322-B9A7-578BBD2DA09F}\ExtensionLoader.dll
[2013.12.10 03:15:46 | 001,168,672 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{57511BAC-6308-481B-B5E4-E4C797C1837A}\ExtensionLoader.dll
[2013.12.01 14:09:05 | 000,061,528 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2014.02.12 22:25:28 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\images\squares-loader.gif
[2014.02.12 22:25:28 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif
[2014.02.12 22:25:28 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_blue\dhtmlxmenu_loader.gif
[2014.02.12 22:25:28 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2014.02.12 22:25:28 | 000,001,683 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.6.2_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_web\dhxmenu_loader.gif
[2014.02.13 07:36:52 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\images\squares-loader.gif
[2014.02.13 07:36:52 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif
[2014.02.13 07:36:52 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_blue\dhtmlxmenu_loader.gif
[2014.02.13 07:36:52 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2014.02.13 07:36:52 | 000,001,683 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.1.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_web\dhxmenu_loader.gif
[2014.02.15 10:05:41 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\images\squares-loader.gif
[2014.02.15 10:05:41 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif
[2014.02.15 10:05:41 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_blue\dhtmlxmenu_loader.gif
[2014.02.15 10:05:41 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2014.02.15 10:05:41 | 000,001,683 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.2.0_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_web\dhxmenu_loader.gif
[2014.03.06 05:01:36 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\images\squares-loader.gif
[2014.03.06 05:01:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif
[2014.03.06 05:01:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_blue\dhtmlxmenu_loader.gif
[2014.03.06 05:01:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2014.03.06 05:01:36 | 000,001,683 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.1_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_web\dhxmenu_loader.gif
[2014.03.12 15:07:36 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\images\squares-loader.gif
[2014.03.12 15:07:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif
[2014.03.12 15:07:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_blue\dhtmlxmenu_loader.gif
[2014.03.12 15:07:36 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2014.03.12 15:07:36 | 000,001,683 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.4_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_web\dhxmenu_loader.gif
[2014.03.25 21:46:03 | 000,000,404 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.5_0\images\squares-loader.gif
[2014.03.25 21:46:03 | 000,000,401 | ---- | M] () -- \Users\Hnanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\5.4.5_0\js\newtab\contextmenu\imgs\dhxmenu_dhx_black\dhtmlxmenu_loader.gif

VIRY.CZ

Zasekané prohlížeče

Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče

Re: Zasekané prohlížeče