
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivka
Dobrý večer, mám tu log, len preventivne.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Spravca at 2015-03-04 21:08:26
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 128 GB (27%) free of 477 GB
Total RAM: 8189 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:08:27, on 4. 3. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\puush\puush.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\osu!\osu!.exe
C:\TeamSpeak 3 Client\ts3client_win32.exe
C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Spravca.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [DEXTIFICATOR] "c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE"
O4 - HKCU\..\Run: [puush] C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\system32\StikyNot.exe
O4 - Startup: Dropbox.lnk = Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: Download all links by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallurl.htm
O8 - Extra context menu item: Download all videos by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallflvurl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgeturl.htm
O8 - Extra context menu item: Download current video by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetflvurl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: WSISAllmytubechrome - (no CLSID) - (no file)
O18 - Filter: AutorunsDisabled - (no CLSID) - (no file)
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Celavimus Client Host (celavimushost) - altPUG LLC - C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe
O23 - Service: CyberGhost 5 Client Service (CGVPNCliService) - CyberGhost S.R.L - C:\Program Files\CyberGhost 5\Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
--
End of file - 11651 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0b0cd3cd-90d5-4349-81d6-c43e67a747fa 1
\??\C:\Windows\system32\conhost.exe "2080390223-1110404905-121797221816815923-4872222092006614333369207101-1263364917
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe"
"C:\Program Files\Tablet\Wacom\WacomHost.exe" "C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1527456119-7019073182091180380-1083874504-257289311-1968224040-1348284798165824360
"C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\puush\puush.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://istart.webssearches.com/?type=sc ... XXZ3T7AH4C
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5980.0.2024313710\804702830" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39,47 --gpu-vendor-id=0x10de --gpu-device-id=0x11c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.2.989915215\1478662932" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.3.1732931833\1571687037" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.5.1974088679\638840020" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.6.684069792\1782566915" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.7.1567451854\2101466836" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.8.1318589209\973262816" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.9.1238172702\1353647171" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.12.2036253175\877093949" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.13.1865953120\73113381" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.24.1249468511\1133788107" /prefetch:673131151
"C:\Windows\SYSTEM32\WISPTIS.EXE" /ManualLaunch;
"taskhost.exe"
"C:\Program Files (x86)\osu!\osu!.exe"
"C:\TeamSpeak 3 Client\ts3client_win32.exe"
"C:\Windows\system32\StikyNot.exe"
"C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
"C:/GAMES/League of Legends/RADS/projects/lol_patcher/releases/0.0.0.22/deploy/LoLPatcher.exe"
"C:/GAMES/League of Legends/RADS/projects/lol_air_client/releases/0.0.1.131/deploy//LolClient.exe" -runtime .\ -nodebug META-INF\AIR\application.xml .\ -- 8393
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.320.1250581934\789643269" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.327.181053191\1308063904" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.328.1226031332\174536751" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.332.1718239739\1643038106" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.333.1574383880\1661348994" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.335.758415979\215805798" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.338.179698626\1063470233" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5980.339.154621451\1428887994" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe130_ Global\UsGthrCtrlFltPipeMssGthrPipe130 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
C:\Windows\system32\DllHost.exe /Processid:{76D0CB12-7604-4048-B83C-1005C7DDC503}
"C:\Users\Spravca\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job - C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job - C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=U270DF&PC=U270&q="
prefs.js - "browser.startup.homepage" - "http://www.msn.com/en-us/?pc=U270&ocid= ... XXZ3T7AH4C"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.4.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@idsoftware.com/QuakeLive]
"Description"=
"Path"=C:\ProgramData\id Software\QuakeLive\npquakezero.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.net/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\wacom.com/WacomTabletPlugin]
"Description"=
"Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\wacom.com/WacomTabletPlugin]
"Description"=
"Path"=C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\
faststartff@gmail.com
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\searchplugins\
bingp.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-24 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-09 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-09 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-10-17 13307496]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"puush"=C:\Program Files (x86)\puush\puush.exe [2013-12-28 567880]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30879328]
"uTorrent"=C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [2015-01-22 1377872]
"RESTART_STICKY_NOTES"=C:\Windows\system32\StikyNot.exe [2009-07-14 427520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bloody2]
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-08-14 13965312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ftweak_RAMRush]
C:\Program Files (x86)\RAMRush\RAMRush.exe [2009-09-17 670720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GameCompanion]
C:\Users\Spravca\AppData\Roaming\GameCompanion\GameCompanion.exe [2013-10-12 484408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07 116648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-09-04 3802448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2013-12-28 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\PROGRA~2\Raptr\raptrstub.exe [2014-07-30 55360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RESTART_STICKY_NOTES]
C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2012-08-25 765200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyDrive]
C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-09-25 277672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftEther VPN Client UI Helper]
C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-09-16 4352568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Spravca\AppData\Roaming\Spotify\Spotify.exe [2015-01-23 6737976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Spravca\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-01-23 1676344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17 508800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Tilt]
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2009-06-26 724992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [2015-01-22 1377872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk]
C:\PROGRA~2\GIGABYTE\GIGABY~1\OC_GURU.exe [2014-03-31 23318528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
C:\PROGRA~2\LOLREP~1\LOLREC~1.EXE [2013-12-11 526848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk]
C:\PROGRA~1\SOFTET~1\VPNCMG~1.EXE [2014-09-16 4543544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Spravca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe [2015-02-11 42555824]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-29 4085896]
"DEXTIFICATOR"=c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [2015-03-01 10240]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AutorunsDisabled
C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAHealth"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"vidc.xtor"=DxtoryCodec64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-03-04 21:04:24 ----D---- C:\rsit
2015-03-04 08:36:07 ----D---- C:\crckingh
2015-03-02 06:03:01 ----A---- C:\Windows\system32\FNTCACHE.DAT
2015-02-20 08:44:39 ----D---- C:\Users\Spravca\AppData\Roaming\VisualAssist
2015-02-20 00:17:37 ----D---- C:\Program Files\YoloMouse
2015-02-19 02:54:01 ----D---- C:\Users\Spravca\AppData\Roaming\JustCode
2015-02-19 01:50:13 ----D---- C:\Users\Spravca\AppData\Roaming\QtProject
2015-02-18 15:41:14 ----D---- C:\Qt
2015-02-17 18:23:55 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\wdi.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\powertracker.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\perftrack.dll
2015-02-12 10:49:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-12 10:49:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-12 10:49:47 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-12 10:49:47 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 13:56:55 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 13:56:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 13:56:45 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 13:56:44 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 13:56:44 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 13:56:43 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 13:56:40 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 13:55:22 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 13:55:22 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 13:55:20 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 13:55:20 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 13:55:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 13:55:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 13:55:09 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 13:55:08 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 13:55:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 13:54:58 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 13:54:57 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 13:54:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 13:54:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 13:54:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 13:54:54 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 13:54:41 ----A---- C:\Windows\system32\win32k.sys
2015-02-11 01:08:44 ----D---- C:\Program Files (x86)\MySQL
2015-02-09 17:07:12 ----D---- C:\ProgramData\SystemRequirementsLab
2015-02-08 22:36:24 ----D---- C:\Program Files (x86)\MacroRecorder
2015-02-08 11:41:38 ----D---- C:\Users\Spravca\AppData\Roaming\Hex-Rays
2015-02-08 11:41:16 ----D---- C:\Program Files (x86)\IDA Free
2015-02-07 22:25:59 ----D---- C:\Program Files (x86)\Sanny Builder 3
======List of files/folders modified in the last 1 month======
2015-03-04 21:08:27 ----D---- C:\Program Files\trend micro
2015-03-04 21:03:10 ----D---- C:\Program Files (x86)\osu!
2015-03-04 20:29:17 ----D---- C:\Users\Spravca\AppData\Roaming\Skype
2015-03-04 20:23:10 ----D---- C:\Users\Spravca\AppData\Roaming\TS3Client
2015-03-04 16:36:42 ----D---- C:\Windows\temp
2015-03-04 15:18:54 ----D---- C:\Windows\system32\config
2015-03-04 15:10:10 ----D---- C:\Users\Spravca\AppData\Roaming\OBS
2015-03-04 07:41:26 ----D---- C:\Windows\Prefetch
2015-03-04 05:31:33 ----D---- C:\Users\Spravca\AppData\Roaming\uTorrent
2015-03-04 05:29:27 ----D---- C:\Users\Spravca\AppData\Roaming\Dropbox
2015-03-04 05:25:12 ----D---- C:\ProgramData\NVIDIA
2015-03-03 04:21:55 ----D---- C:\GAMES
2015-03-03 03:46:38 ----D---- C:\Program Files (x86)\R.G. Freedom
2015-03-03 02:11:45 ----D---- C:\Program Files (x86)\Steam
2015-03-02 06:04:56 ----D---- C:\Windows\inf
2015-03-02 06:03:01 ----D---- C:\Windows\System32
2015-03-01 23:04:37 ----D---- C:\Windows
2015-03-01 22:25:52 ----D---- C:\Users\Spravca\AppData\Roaming\Winamp
2015-03-01 22:25:51 ----D---- C:\Users\Spravca\AppData\Roaming\Notepad++
2015-03-01 22:25:03 ----D---- C:\Windows\Logs
2015-03-01 22:25:03 ----D---- C:\Windows\debug
2015-03-01 16:35:47 ----D---- C:\ebooks
2015-03-01 00:46:36 ----D---- C:\Users\Spravca\AppData\Roaming\Spotify
2015-02-26 18:41:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-26 06:37:26 ----D---- C:\Windows\Microsoft.NET
2015-02-26 06:11:59 ----D---- C:\Windows\winsxs
2015-02-26 06:09:38 ----D---- C:\Windows\SysWOW64
2015-02-25 22:23:56 ----SHD---- C:\Windows\Installer
2015-02-20 00:17:37 ----D---- C:\Program Files
2015-02-19 03:07:26 ----D---- C:\Users\Spravca\AppData\Roaming\Telerik
2015-02-19 02:51:21 ----D---- C:\Program Files (x86)\Telerik
2015-02-19 02:48:23 ----SD---- C:\Windows\system32\Microsoft
2015-02-19 02:48:20 ----D---- C:\Users\Spravca\AppData\Roaming\JetBrains
2015-02-19 02:45:59 ----RSD---- C:\Windows\assembly
2015-02-18 04:10:41 ----D---- C:\Windows\tracing
2015-02-17 18:24:29 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2015-02-16 03:59:31 ----D---- C:\Windows\rescache
2015-02-13 02:07:09 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-13 02:07:09 ----D---- C:\Windows\system32\en-US
2015-02-12 06:13:05 ----D---- C:\Windows\system32\catroot2
2015-02-12 06:07:16 ----SD---- C:\Windows\system32\CompatTel
2015-02-12 06:07:15 ----D---- C:\Windows\system32\appraiser
2015-02-12 06:07:14 ----D---- C:\Program Files\Internet Explorer
2015-02-12 06:07:13 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-02-12 06:07:12 ----D---- C:\Windows\system32\sk-SK
2015-02-12 06:07:10 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-12 06:07:09 ----D---- C:\Windows\system32\drivers
2015-02-11 23:43:14 ----D---- C:\ProgramData\Package Cache
2015-02-11 23:41:21 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 23:39:58 ----D---- C:\Windows\system32\MRT
2015-02-11 23:31:47 ----A---- C:\Windows\system32\MRT.exe
2015-02-11 14:44:21 ----SD---- C:\Users\Spravca\AppData\Roaming\Microsoft
2015-02-11 13:54:37 ----D---- C:\Windows\system32\catroot
2015-02-11 01:08:50 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-02-11 01:08:44 ----RD---- C:\Program Files (x86)
2015-02-09 23:15:15 ----SHD---- C:\$RECYCLE.BIN
2015-02-09 23:15:07 ----RD---- C:\Users
2015-02-09 17:07:12 ----D---- C:\ProgramData
2015-02-09 17:07:12 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-02-09 17:06:07 ----D---- C:\Program Files\Java
2015-02-09 17:04:52 ----D---- C:\Program Files (x86)\Common Files
2015-02-09 17:04:31 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-02-09 17:04:29 ----A---- C:\Windows\SYSWOW64\javaws.exe
2015-02-09 17:04:29 ----A---- C:\Windows\SYSWOW64\javaw.exe
2015-02-09 17:04:28 ----A---- C:\Windows\SYSWOW64\java.exe
2015-02-09 17:04:17 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2014-07-24 448400]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-24 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-24 224896]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-07-24 28184]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-24 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-21 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-24 427360]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-08-24 126944]
R1 truecrypt;truecrypt; C:\Windows\System32\drivers\truecrypt.sys [2014-12-17 231376]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2013-09-06 238352]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2013-09-06 119056]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-24 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-24 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-24 92008]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2013-04-30 72216]
R3 AR9271;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athuwx.sys [2011-07-28 2224160]
R3 CEDRIVER60;CEDRIVER60; \??\C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys [2014-06-20 64064]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-07-29 56960]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-07-29 79104]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 hidkmdf;KMDF Driver; C:\Windows\system32\DRIVERS\hidkmdf.sys [2014-10-25 14136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-10-18 2957544]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2013-04-30 11552]
R3 Neo_VPN;VPN Client Device Driver - VPN; C:\Windows\system32\DRIVERS\Neo_0062.sys [2014-03-10 28768]
R3 Neo_VPN2;VPN Client Device Driver - VPN2; C:\Windows\system32\DRIVERS\Neo_0032.sys [2014-09-16 28768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-10-30 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
R3 tun3326;VPN Tunnel Adapter; C:\Windows\system32\DRIVERS\tun3326.sys [2013-03-22 32368]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2013-09-06 131856]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2013-09-06 146704]
R3 WacHidRouter;Wacom Hid Router; C:\Windows\system32\DRIVERS\wachidrouter.sys [2014-10-25 100664]
R3 wacomrouterfilter;Wacom Router Filter Driver; C:\Windows\system32\DRIVERS\wacomrouterfilter.sys [2014-10-25 15160]
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 1PBLikesItAnal;1PBLikesItAnal; \??\C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [2006-04-18 6144]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys []
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [2014-01-08 14376]
S3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys []
S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976]
S3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2012-08-25 202632]
S3 SEE;SoftEther Ethernet Layer Driver; C:\Windows\system32\drivers\see.sys [2014-09-16 38240]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-01-10 42184]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S4 ALSysIO;ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys []
S4 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S4 FairplayKD;FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys []
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
S4 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S4 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-24 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-07-24 106488]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 CGVPNCliService;CyberGhost 5 Client Service; C:\Program Files\CyberGhost 5\Service.exe [2014-06-12 64624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 celavimushost;Celavimus Client Host; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [2014-12-25 123096]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-07-22 89232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-14 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-25 262320]
S4 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S4 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-03 15768]
S4 FileZilla Server;FileZilla Server FTP server; C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe []
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-09-04 2525008]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S4 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-08-08 377616]
S4 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 114288]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S4 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-31 76888]
S4 RzKLService;RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-02-25 105448]
S4 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2012-08-25 123664]
S4 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2012-11-26 1225312]
S4 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2012-11-26 659040]
S4 SEVPNCLIENT;SoftEther VPN Client; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-09-16 4352568]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S4 SumRandoVPNService;SumRandoVPNService; C:\Program Files (x86)\SumRando\SumRando\misc\vpnmanagesvc.exe [2014-09-30 108144]
S4 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
S4 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2013-11-06 758224]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Spravca at 2015-03-04 21:08:26
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 128 GB (27%) free of 477 GB
Total RAM: 8189 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:08:27, on 4. 3. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\puush\puush.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\osu!\osu!.exe
C:\TeamSpeak 3 Client\ts3client_win32.exe
C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Spravca.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... XXZ3T7AH4C
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [DEXTIFICATOR] "c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE"
O4 - HKCU\..\Run: [puush] C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\system32\StikyNot.exe
O4 - Startup: Dropbox.lnk = Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: Download all links by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallurl.htm
O8 - Extra context menu item: Download all videos by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetallflvurl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgeturl.htm
O8 - Extra context menu item: Download current video by FlashGet3 - C:\Program Files (x86)\FlashGet Network\FlashGet 3\BHO\fdgetflvurl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\sslsp105.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: WSISAllmytubechrome - (no CLSID) - (no file)
O18 - Filter: AutorunsDisabled - (no CLSID) - (no file)
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Celavimus Client Host (celavimushost) - altPUG LLC - C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe
O23 - Service: CyberGhost 5 Client Service (CGVPNCliService) - CyberGhost S.R.L - C:\Program Files\CyberGhost 5\Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
--
End of file - 11651 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0b0cd3cd-90d5-4349-81d6-c43e67a747fa 1
\??\C:\Windows\system32\conhost.exe "2080390223-1110404905-121797221816815923-4872222092006614333369207101-1263364917
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe"
"C:\Program Files\Tablet\Wacom\WacomHost.exe" "C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1527456119-7019073182091180380-1083874504-257289311-1968224040-1348284798165824360
"C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\puush\puush.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://istart.webssearches.com/?type=sc ... XXZ3T7AH4C
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5980.0.2024313710\804702830" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39,47 --gpu-vendor-id=0x10de --gpu-device-id=0x11c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.2.989915215\1478662932" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.3.1732931833\1571687037" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.5.1974088679\638840020" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.6.684069792\1782566915" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.7.1567451854\2101466836" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.8.1318589209\973262816" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.9.1238172702\1353647171" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.12.2036253175\877093949" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.13.1865953120\73113381" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.24.1249468511\1133788107" /prefetch:673131151
"C:\Windows\SYSTEM32\WISPTIS.EXE" /ManualLaunch;
"taskhost.exe"
"C:\Program Files (x86)\osu!\osu!.exe"
"C:\TeamSpeak 3 Client\ts3client_win32.exe"
"C:\Windows\system32\StikyNot.exe"
"C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
"C:/GAMES/League of Legends/RADS/projects/lol_patcher/releases/0.0.0.22/deploy/LoLPatcher.exe"
"C:/GAMES/League of Legends/RADS/projects/lol_air_client/releases/0.0.1.131/deploy//LolClient.exe" -runtime .\ -nodebug META-INF\AIR\application.xml .\ -- 8393
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.320.1250581934\789643269" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.327.181053191\1308063904" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.328.1226031332\174536751" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.332.1718239739\1643038106" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.333.1574383880\1661348994" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.335.758415979\215805798" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/disable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Enabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5980.338.179698626\1063470233" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5980.339.154621451\1428887994" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe130_ Global\UsGthrCtrlFltPipeMssGthrPipe130 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
C:\Windows\system32\DllHost.exe /Processid:{76D0CB12-7604-4048-B83C-1005C7DDC503}
"C:\Users\Spravca\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job - C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job - C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=U270DF&PC=U270&q="
prefs.js - "browser.startup.homepage" - "http://www.msn.com/en-us/?pc=U270&ocid= ... XXZ3T7AH4C"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.4.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@idsoftware.com/QuakeLive]
"Description"=
"Path"=C:\ProgramData\id Software\QuakeLive\npquakezero.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.net/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\wacom.com/WacomTabletPlugin]
"Description"=
"Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\wacom.com/WacomTabletPlugin]
"Description"=
"Path"=C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\
faststartff@gmail.com
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\searchplugins\
bingp.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-24 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-09 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-09 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-10-17 13307496]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"puush"=C:\Program Files (x86)\puush\puush.exe [2013-12-28 567880]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30879328]
"uTorrent"=C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [2015-01-22 1377872]
"RESTART_STICKY_NOTES"=C:\Windows\system32\StikyNot.exe [2009-07-14 427520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bloody2]
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-08-14 13965312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ftweak_RAMRush]
C:\Program Files (x86)\RAMRush\RAMRush.exe [2009-09-17 670720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GameCompanion]
C:\Users\Spravca\AppData\Roaming\GameCompanion\GameCompanion.exe [2013-10-12 484408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07 116648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-09-04 3802448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2013-12-28 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\PROGRA~2\Raptr\raptrstub.exe [2014-07-30 55360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RESTART_STICKY_NOTES]
C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2012-08-25 765200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyDrive]
C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2014-09-25 277672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftEther VPN Client UI Helper]
C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-09-16 4352568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Spravca\AppData\Roaming\Spotify\Spotify.exe [2015-01-23 6737976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Spravca\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-01-23 1676344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17 508800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Tilt]
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2009-06-26 724992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [2015-01-22 1377872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk]
C:\PROGRA~2\GIGABYTE\GIGABY~1\OC_GURU.exe [2014-03-31 23318528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
C:\PROGRA~2\LOLREP~1\LOLREC~1.EXE [2013-12-11 526848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk]
C:\PROGRA~1\SOFTET~1\VPNCMG~1.EXE [2014-09-16 4543544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Spravca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe [2015-02-11 42555824]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-29 4085896]
"DEXTIFICATOR"=c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [2015-03-01 10240]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AutorunsDisabled
C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAHealth"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"vidc.xtor"=DxtoryCodec64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-03-04 21:04:24 ----D---- C:\rsit
2015-03-04 08:36:07 ----D---- C:\crckingh
2015-03-02 06:03:01 ----A---- C:\Windows\system32\FNTCACHE.DAT
2015-02-20 08:44:39 ----D---- C:\Users\Spravca\AppData\Roaming\VisualAssist
2015-02-20 00:17:37 ----D---- C:\Program Files\YoloMouse
2015-02-19 02:54:01 ----D---- C:\Users\Spravca\AppData\Roaming\JustCode
2015-02-19 01:50:13 ----D---- C:\Users\Spravca\AppData\Roaming\QtProject
2015-02-18 15:41:14 ----D---- C:\Qt
2015-02-17 18:23:55 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\wdi.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\powertracker.dll
2015-02-17 18:23:55 ----A---- C:\Windows\system32\perftrack.dll
2015-02-12 10:49:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-12 10:49:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-12 10:49:47 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-12 10:49:47 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 13:56:56 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 13:56:55 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 13:56:52 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 13:56:52 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 13:56:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 13:56:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 13:56:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 13:56:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 13:56:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 13:56:46 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 13:56:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 13:56:45 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 13:56:45 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 13:56:44 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 13:56:44 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 13:56:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 13:56:43 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 13:56:43 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 13:56:42 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 13:56:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 13:56:40 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 13:55:22 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 13:55:22 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 13:55:20 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 13:55:20 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 13:55:20 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 13:55:20 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 13:55:14 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 13:55:14 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 13:55:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 13:55:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 13:55:09 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 13:55:08 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 13:55:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 13:54:58 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 13:54:57 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 13:54:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 13:54:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 13:54:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 13:54:54 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 13:54:54 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 13:54:41 ----A---- C:\Windows\system32\win32k.sys
2015-02-11 01:08:44 ----D---- C:\Program Files (x86)\MySQL
2015-02-09 17:07:12 ----D---- C:\ProgramData\SystemRequirementsLab
2015-02-08 22:36:24 ----D---- C:\Program Files (x86)\MacroRecorder
2015-02-08 11:41:38 ----D---- C:\Users\Spravca\AppData\Roaming\Hex-Rays
2015-02-08 11:41:16 ----D---- C:\Program Files (x86)\IDA Free
2015-02-07 22:25:59 ----D---- C:\Program Files (x86)\Sanny Builder 3
======List of files/folders modified in the last 1 month======
2015-03-04 21:08:27 ----D---- C:\Program Files\trend micro
2015-03-04 21:03:10 ----D---- C:\Program Files (x86)\osu!
2015-03-04 20:29:17 ----D---- C:\Users\Spravca\AppData\Roaming\Skype
2015-03-04 20:23:10 ----D---- C:\Users\Spravca\AppData\Roaming\TS3Client
2015-03-04 16:36:42 ----D---- C:\Windows\temp
2015-03-04 15:18:54 ----D---- C:\Windows\system32\config
2015-03-04 15:10:10 ----D---- C:\Users\Spravca\AppData\Roaming\OBS
2015-03-04 07:41:26 ----D---- C:\Windows\Prefetch
2015-03-04 05:31:33 ----D---- C:\Users\Spravca\AppData\Roaming\uTorrent
2015-03-04 05:29:27 ----D---- C:\Users\Spravca\AppData\Roaming\Dropbox
2015-03-04 05:25:12 ----D---- C:\ProgramData\NVIDIA
2015-03-03 04:21:55 ----D---- C:\GAMES
2015-03-03 03:46:38 ----D---- C:\Program Files (x86)\R.G. Freedom
2015-03-03 02:11:45 ----D---- C:\Program Files (x86)\Steam
2015-03-02 06:04:56 ----D---- C:\Windows\inf
2015-03-02 06:03:01 ----D---- C:\Windows\System32
2015-03-01 23:04:37 ----D---- C:\Windows
2015-03-01 22:25:52 ----D---- C:\Users\Spravca\AppData\Roaming\Winamp
2015-03-01 22:25:51 ----D---- C:\Users\Spravca\AppData\Roaming\Notepad++
2015-03-01 22:25:03 ----D---- C:\Windows\Logs
2015-03-01 22:25:03 ----D---- C:\Windows\debug
2015-03-01 16:35:47 ----D---- C:\ebooks
2015-03-01 00:46:36 ----D---- C:\Users\Spravca\AppData\Roaming\Spotify
2015-02-26 18:41:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-26 06:37:26 ----D---- C:\Windows\Microsoft.NET
2015-02-26 06:11:59 ----D---- C:\Windows\winsxs
2015-02-26 06:09:38 ----D---- C:\Windows\SysWOW64
2015-02-25 22:23:56 ----SHD---- C:\Windows\Installer
2015-02-20 00:17:37 ----D---- C:\Program Files
2015-02-19 03:07:26 ----D---- C:\Users\Spravca\AppData\Roaming\Telerik
2015-02-19 02:51:21 ----D---- C:\Program Files (x86)\Telerik
2015-02-19 02:48:23 ----SD---- C:\Windows\system32\Microsoft
2015-02-19 02:48:20 ----D---- C:\Users\Spravca\AppData\Roaming\JetBrains
2015-02-19 02:45:59 ----RSD---- C:\Windows\assembly
2015-02-18 04:10:41 ----D---- C:\Windows\tracing
2015-02-17 18:24:29 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2015-02-16 03:59:31 ----D---- C:\Windows\rescache
2015-02-13 02:07:09 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-13 02:07:09 ----D---- C:\Windows\system32\en-US
2015-02-12 06:13:05 ----D---- C:\Windows\system32\catroot2
2015-02-12 06:07:16 ----SD---- C:\Windows\system32\CompatTel
2015-02-12 06:07:15 ----D---- C:\Windows\system32\appraiser
2015-02-12 06:07:14 ----D---- C:\Program Files\Internet Explorer
2015-02-12 06:07:13 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-02-12 06:07:12 ----D---- C:\Windows\system32\sk-SK
2015-02-12 06:07:10 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-12 06:07:09 ----D---- C:\Windows\system32\drivers
2015-02-11 23:43:14 ----D---- C:\ProgramData\Package Cache
2015-02-11 23:41:21 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 23:39:58 ----D---- C:\Windows\system32\MRT
2015-02-11 23:31:47 ----A---- C:\Windows\system32\MRT.exe
2015-02-11 14:44:21 ----SD---- C:\Users\Spravca\AppData\Roaming\Microsoft
2015-02-11 13:54:37 ----D---- C:\Windows\system32\catroot
2015-02-11 01:08:50 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-02-11 01:08:44 ----RD---- C:\Program Files (x86)
2015-02-09 23:15:15 ----SHD---- C:\$RECYCLE.BIN
2015-02-09 23:15:07 ----RD---- C:\Users
2015-02-09 17:07:12 ----D---- C:\ProgramData
2015-02-09 17:07:12 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-02-09 17:06:07 ----D---- C:\Program Files\Java
2015-02-09 17:04:52 ----D---- C:\Program Files (x86)\Common Files
2015-02-09 17:04:31 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-02-09 17:04:29 ----A---- C:\Windows\SYSWOW64\javaws.exe
2015-02-09 17:04:29 ----A---- C:\Windows\SYSWOW64\javaw.exe
2015-02-09 17:04:28 ----A---- C:\Windows\SYSWOW64\java.exe
2015-02-09 17:04:17 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2014-07-24 448400]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-24 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-24 224896]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-07-24 28184]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-24 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-21 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-24 427360]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-08-24 126944]
R1 truecrypt;truecrypt; C:\Windows\System32\drivers\truecrypt.sys [2014-12-17 231376]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2013-09-06 238352]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2013-09-06 119056]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-24 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-24 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-24 92008]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2013-04-30 72216]
R3 AR9271;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athuwx.sys [2011-07-28 2224160]
R3 CEDRIVER60;CEDRIVER60; \??\C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys [2014-06-20 64064]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-07-29 56960]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-07-29 79104]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 hidkmdf;KMDF Driver; C:\Windows\system32\DRIVERS\hidkmdf.sys [2014-10-25 14136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-10-18 2957544]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2013-04-30 11552]
R3 Neo_VPN;VPN Client Device Driver - VPN; C:\Windows\system32\DRIVERS\Neo_0062.sys [2014-03-10 28768]
R3 Neo_VPN2;VPN Client Device Driver - VPN2; C:\Windows\system32\DRIVERS\Neo_0032.sys [2014-09-16 28768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-10-30 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
R3 tun3326;VPN Tunnel Adapter; C:\Windows\system32\DRIVERS\tun3326.sys [2013-03-22 32368]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2013-09-06 131856]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2013-09-06 146704]
R3 WacHidRouter;Wacom Hid Router; C:\Windows\system32\DRIVERS\wachidrouter.sys [2014-10-25 100664]
R3 wacomrouterfilter;Wacom Router Filter Driver; C:\Windows\system32\DRIVERS\wacomrouterfilter.sys [2014-10-25 15160]
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 1PBLikesItAnal;1PBLikesItAnal; \??\C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [2006-04-18 6144]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys []
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [2014-01-08 14376]
S3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys []
S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976]
S3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2012-08-25 202632]
S3 SEE;SoftEther Ethernet Layer Driver; C:\Windows\system32\drivers\see.sys [2014-09-16 38240]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-01-10 42184]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S4 ALSysIO;ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys []
S4 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S4 FairplayKD;FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys []
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
S4 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S4 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-24 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-07-24 106488]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 CGVPNCliService;CyberGhost 5 Client Service; C:\Program Files\CyberGhost 5\Service.exe [2014-06-12 64624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 celavimushost;Celavimus Client Host; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [2014-12-25 123096]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-07-22 89232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-14 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-25 262320]
S4 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S4 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-03 15768]
S4 FileZilla Server;FileZilla Server FTP server; C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe []
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-09-04 2525008]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S4 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-08-08 377616]
S4 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 114288]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S4 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-31 76888]
S4 RzKLService;RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-02-25 105448]
S4 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2012-08-25 123664]
S4 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2012-11-26 1225312]
S4 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2012-11-26 659040]
S4 SEVPNCLIENT;SoftEther VPN Client; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-09-16 4352568]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S4 SumRandoVPNService;SumRandoVPNService; C:\Program Files (x86)\SumRando\SumRando\misc\vpnmanagesvc.exe [2014-09-30 108144]
S4 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
S4 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2013-11-06 758224]
-----------------EOF-----------------
Re: Preventivka
Zdravim 
O tomto vite?
S3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys []
Pokud nepouzivate, odinstalujte Skype Click to Call - adware z instalace Skypu
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Spustte jako spravce C:\Program Files\trend micro\Spravca.exe
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )


S3 PBDOWNFORCE_TEST_SERVICE;PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys []



- kliknete na Do a system scan only
- zatrhnete (udelejte fajfku) nasledujici polozky
- O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
- O15 - Trusted Zone: *.clonewarsadventures.com
- kliknete na Fix checked

- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka
Pekny vecer,
ano ten subor som tam mal asi 3-4 roky dozadu, netusim ako to ze to je este v registroch kedze to ani neexistuje a ccleaner pouzivam, by som cakal od takej znamej aplikacie ze to dokaze vymazat
skype to call odstraneny, hijackthis som spustil-fixol, log tu:
# AdwCleaner v4.111 - Logfile created 05/03/2015 at 18:25:53
# Updated 18/02/2015 by Xplode
# Database : 2015-03-02.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Spravca - SPRAVCA-PC
# Running from : C:\Users\Spravca\Downloads\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Spravca\AppData\Roaming\webssearches
Folder Deleted : C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\Extensions\faststartff@gmail.com
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehkepjiconegkhpodgoaeamnpckdbblp
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\phnffahgegfkcobeaapbenpmdnkifigc
File Deleted : C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\searchplugins\bingp.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hcdjknjpbnhdoabbngpmfekaecnpajba_0.localstorage
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hcdjknjpbnhdoabbngpmfekaecnpajba_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.ak.facebook.com_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
***** [ Scheduled tasks ] *****
Task Deleted : update-sys
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d4be23e35cccd8db\Twitch Live.lnk
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Key Deleted : HKCU\Software\Mozilla\Extends
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\OCS
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17631
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v32.0.3 (x86 sk)
[gdha1i0b.default\prefs.js] - Line Deleted : user_pref("browser.newtab.url", "hxxp://istart.webssearches.com/newtab/?type=nt&ts=1421001824&from=cvs&uid=ST500DM002-1BD142_Z3T7AH4CXXXXZ3T7AH4C");
[gdha1i0b.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.msn.com/en-us/?pc=U270&ocid=U270DHP ... XXZ3T7AH4C");
-\\ Google Chrome v40.0.2214.115
-\\ Chromium v
*************************
AdwCleaner[R1].txt - [6009 bytes] - [05/03/2015 18:23:19]
AdwCleaner[S1].txt - [5558 bytes] - [05/03/2015 18:25:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [5617 bytes] ##########
este by som sa chcel spytat, je nejaky sposob ktorym si mozem zrychlit start windowsu? pride mi to dost pomale po tom co zadam heslo od pouzivatela, strasne dlho trva kym sa to nacita. dakujem
ano ten subor som tam mal asi 3-4 roky dozadu, netusim ako to ze to je este v registroch kedze to ani neexistuje a ccleaner pouzivam, by som cakal od takej znamej aplikacie ze to dokaze vymazat

skype to call odstraneny, hijackthis som spustil-fixol, log tu:
# AdwCleaner v4.111 - Logfile created 05/03/2015 at 18:25:53
# Updated 18/02/2015 by Xplode
# Database : 2015-03-02.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Spravca - SPRAVCA-PC
# Running from : C:\Users\Spravca\Downloads\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Spravca\AppData\Roaming\webssearches
Folder Deleted : C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\Extensions\faststartff@gmail.com
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehkepjiconegkhpodgoaeamnpckdbblp
Folder Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\phnffahgegfkcobeaapbenpmdnkifigc
File Deleted : C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\searchplugins\bingp.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hcdjknjpbnhdoabbngpmfekaecnpajba_0.localstorage
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hcdjknjpbnhdoabbngpmfekaecnpajba_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.ak.facebook.com_0.localstorage-journal
File Deleted : C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
***** [ Scheduled tasks ] *****
Task Deleted : update-sys
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Spravca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d4be23e35cccd8db\Twitch Live.lnk
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Key Deleted : HKCU\Software\Mozilla\Extends
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\OCS
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17631
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v32.0.3 (x86 sk)
[gdha1i0b.default\prefs.js] - Line Deleted : user_pref("browser.newtab.url", "hxxp://istart.webssearches.com/newtab/?type=nt&ts=1421001824&from=cvs&uid=ST500DM002-1BD142_Z3T7AH4CXXXXZ3T7AH4C");
[gdha1i0b.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.msn.com/en-us/?pc=U270&ocid=U270DHP ... XXZ3T7AH4C");
-\\ Google Chrome v40.0.2214.115
-\\ Chromium v
*************************
AdwCleaner[R1].txt - [6009 bytes] - [05/03/2015 18:23:19]
AdwCleaner[S1].txt - [5558 bytes] - [05/03/2015 18:25:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [5617 bytes] ##########
este by som sa chcel spytat, je nejaky sposob ktorym si mozem zrychlit start windowsu? pride mi to dost pomale po tom co zadam heslo od pouzivatela, strasne dlho trva kym sa to nacita. dakujem
Re: Preventivka
OK, takze ho smazem rucne.lonely73 píše:ano ten subor som tam mal asi 3-4 roky dozadu, netusim ako to ze to je este v registroch kedze to ani neexistuje a ccleaner pouzivam, by som cakal od takej znamej aplikacie ze to dokaze vymazat![]()
Start systemu se da urychlit vypnutim procesu, ktere se zapinaji pri startu pocitace... start -> spustit -> msconfig -> zalozka Po spusteni a muzete zakazat spoustet nektere sluzby... pozor! Nektere sluzby jsou pro start pocitace a jeho plynuly chod nezbytnelonely73 píše:este by som sa chcel spytat, je nejaky sposob ktorym si mozem zrychlit start windowsu? pride mi to dost pomale po tom co zadam heslo od pouzivatela, strasne dlho trva kym sa to nacita. dakujem

Na vine take muze byt horsi stav disku.

- na stazeny FRST kliknete pravym, vyberte moznost Spustit jako spravce (v pripade Win XP staci obycejne dvojklikem)
- zkontrolujte, ze je zaskrtnuta i moznost Addition
- kliknete na Scan, tento proces vezme cca 5 minut
- po dokonceni skenu se Vam na plose vytvorily logy FRST.txt a Addition.txt - oba sem vlozte.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01
Ran by Spravca (administrator) on SPRAVCA-PC on 05-03-2015 19:22:53
Running from C:\Users\Spravca\Downloads
Loaded Profiles: Spravca (Available profiles: Spravca & Aero)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\puush\puush.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamSpeak Systems GmbH) C:\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
() C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
() C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
() C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-29] (AVAST Software)
HKLM-x32\...\Run: [DEXTIFICATOR] => c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [10240 2015-03-01] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2013-12-28] ()
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [uTorrent] => C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.)
AppInit_DLLs-x32: => "" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=U270&ocid=U270DHP
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-144053010-3787646527-420655005-1000 -> {DB689796-A403-459C-AC20-478F9A7E1012} URL = https://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: AutorunsDisabled - No CLSID Value
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: WSISAllmytubechrome - No CLSID Value
Filter: AutorunsDisabled - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
Filter-x32: AutorunsDisabled - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9 02 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9 13 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9-x64 01 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Winsock: Catalog9-x64 02 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Winsock: Catalog9-x64 13 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @idsoftware.com/QuakeLive -> C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Spravca\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-05-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-24]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: No Name - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.sk/
CHR Profile: C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-11]
CHR Extension: (Plug.DJ Reloaded) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjejoakglbnhcedgkibnhdfhcollodp [2015-02-11]
CHR Extension: (Adblock Plus) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-11]
CHR Extension: (µBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-02-06]
CHR Extension: (iMacros for Chrome) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp [2015-02-11]
CHR Extension: (Gladiatus Crazy Add On) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfbmiedjenagoegiiabjfjpkhfocifkp [2015-02-11]
CHR Extension: (Tampermonkey) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-02-11]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2015-02-11]
CHR Extension: (Lounge Assistant) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2015-02-11]
CHR Extension: (AdBlock Premium) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2015-02-11]
CHR Extension: (LoungeDestroyer) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-02-11]
CHR Extension: (AdBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-11]
CHR Extension: (Hola Better Internet) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-02-11]
CHR Extension: (Avast Online Security) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-25]
CHR Extension: (ScriptBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2015-03-05]
CHR Extension: (Url in title) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ignpacbgnbnkaiooknalneoeladjnfgb [2015-02-11]
CHR Extension: (Twitch Live) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiljidcefnbhbpamageahhblhbbhhopm [2015-02-11]
CHR Extension: (tf2outpost price integration) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndflpbfgklcjpkepbmfgjjancaocpnmp [2015-02-11]
CHR Extension: (Download to Firedrive) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlcbekplhffbagogapmldeeeghicmplg [2015-02-11]
CHR Extension: (Google Wallet) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-06]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-24]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S4 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-24] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-24] (AVAST Software)
S4 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-03] (Microsoft Corporation)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-06-12] (CyberGhost S.R.L)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-08-08] (LogMeIn, Inc.)
S4 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-31] ()
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 SumRandoVPNService; C:\Program Files (x86)\SumRando\SumRando\misc\vpnmanagesvc.exe [108144 2014-09-30] (SumRando)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
S4 FileZilla Server; "C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 1PBLikesItAnal; C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [6144 2006-04-18] () [File not signed]
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 AR9271; C:\Windows\System32\DRIVERS\athuwx.sys [2224160 2011-07-28] (Atheros Communications, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-24] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-07-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-24] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-07-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-24] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-24] ()
S3 CEDRIVER60; C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys [64064 2014-06-20] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-01-08] ()
S4 LMIRfsClientNP; No ImagePath
R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0062.sys [28768 2014-03-10] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 Neo_VPN2; C:\Windows\System32\DRIVERS\Neo_0032.sys [28768 2014-09-16] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2014-09-16] (SoftEther VPN Project at University of Tsukuba, Japan.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-01-10] (Anchorfree Inc.)
R3 tun3326; C:\Windows\System32\DRIVERS\tun3326.sys [32368 2013-03-22] (The OpenVPN Project)
S3 WsAudio_Device; C:\Windows\System32\drivers\VirtualAudio.sys [31080 2013-09-03] (Wondershare)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [32240 2008-02-01] (Cyberlink Corp.)
S4 ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys [X]
S4 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S3 PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys [X]
S4 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S4 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-05 19:22 - 2015-03-05 19:23 - 00028134 _____ () C:\Users\Spravca\Downloads\FRST.txt
2015-03-05 19:22 - 2015-03-05 19:22 - 00000000 ____D () C:\FRST
2015-03-05 19:21 - 2015-03-05 19:22 - 02092544 _____ (Farbar) C:\Users\Spravca\Downloads\FRST64.exe
2015-03-05 18:21 - 2015-03-05 18:25 - 00000000 ____D () C:\AdwCleaner
2015-03-05 18:20 - 2015-03-05 18:20 - 02126848 _____ () C:\Users\Spravca\Downloads\AdwCleaner.exe
2015-03-05 17:50 - 2015-03-05 17:52 - 29638623 _____ () C:\Users\Spravca\Downloads\Hexalift v15 purplepink.rar
2015-03-05 17:38 - 2015-03-05 17:38 - 08859691 _____ () C:\Users\Spravca\Downloads\fml-ok.rar
2015-03-05 08:39 - 2015-03-05 08:40 - 11626133 _____ () C:\Users\Spravca\Downloads\filament+version+MathClass (1).osk
2015-03-05 08:08 - 2015-03-05 08:54 - 00273784 _____ () C:\Users\Spravca\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-05 08:08 - 2015-03-05 08:08 - 00273784 _____ () C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2015-03-05 08:06 - 2015-03-05 18:29 - 00000336 _____ () C:\Windows\setupact.log
2015-03-05 08:06 - 2015-03-05 08:13 - 05891184 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-05 08:06 - 2015-03-05 08:06 - 00005200 _____ () C:\Windows\PFRO.log
2015-03-05 08:06 - 2015-03-05 08:06 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-04 21:48 - 2015-03-04 21:48 - 00000000 ____D () C:\Users\Spravca\Documents\Tunngle
2015-03-04 21:04 - 2015-03-04 21:04 - 01222144 _____ () C:\Users\Spravca\Downloads\RSITx64.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 00000000 ____D () C:\rsit
2015-03-04 13:21 - 2015-03-04 13:21 - 00955801 _____ () C:\Users\Spravca\Desktop\oki.psd
2015-03-04 12:31 - 2015-03-04 12:32 - 06713466 _____ () C:\Users\Spravca\Downloads\nfs-rivals-v1.0-trainer-plus6.zip
2015-03-04 09:14 - 2015-03-04 09:14 - 00000070 _____ () C:\Users\Spravca\Documents\WTF.txt
2015-03-04 08:56 - 2015-03-04 08:57 - 01027505 _____ () C:\Users\Spravca\Downloads\LoLAccountChecker-master.zip
2015-03-04 08:41 - 2015-03-04 08:41 - 04971748 _____ () C:\Users\Spravca\Downloads\200k.txt
2015-03-04 08:36 - 2015-03-04 08:36 - 00000000 ____D () C:\crckingh
2015-03-04 08:35 - 2015-03-04 08:35 - 00051230 _____ () C:\Users\Spravca\Documents\euw.txt
2015-03-04 07:40 - 2015-03-04 07:40 - 00032394 _____ () C:\Users\Spravca\Downloads\globalhook2_src.zip
2015-03-03 18:54 - 2015-03-03 18:54 - 00012394 _____ () C:\Users\Spravca\Downloads\ZynOSScanner.zip
2015-03-03 18:53 - 2015-03-03 18:53 - 01225192 _____ () C:\Users\Spravca\Downloads\TD-W8951ND_V3.0_110729_FI.rar
2015-03-03 18:51 - 2015-03-03 18:51 - 00001455 _____ () C:\Users\Spravca\Downloads\zynos-attacker-master.zip
2015-03-03 18:36 - 2015-03-03 18:36 - 00000000 ____D () C:\Users\Spravca\Downloads\fDownloader - Builder and Stub Application
2015-03-03 17:45 - 2015-03-03 18:36 - 00443937 _____ () C:\Users\Spravca\Downloads\fDownloader - Builder and Stub Application.zip
2015-03-03 13:36 - 2015-03-03 13:36 - 01028838 _____ () C:\Users\Spravca\Downloads\nfs-rivals-v1.0-v1.1-trainer-plus14.zip
2015-03-03 13:36 - 2015-03-03 13:36 - 00000000 ____D () C:\Users\Spravca\Documents\FLiNGTrainer
2015-03-03 04:33 - 2015-03-03 04:33 - 00000000 ____D () C:\Users\Spravca\Documents\Ghost Games
2015-03-03 04:32 - 2015-03-03 04:32 - 00005255 _____ () C:\Users\Spravca\Downloads\card_war_game_console.cs
2015-03-03 04:32 - 2015-03-03 04:32 - 00004415 _____ () C:\Users\Spravca\Downloads\rock_paper_scissors.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00007111 _____ () C:\Users\Spravca\Downloads\c#_send_file_over_tcp.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00003211 _____ () C:\Users\Spravca\Downloads\c#_skype_api.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00001916 _____ () C:\Users\Spravca\Downloads\twitch_api_-_stream_info.cs
2015-03-03 04:28 - 2015-03-03 04:28 - 00000935 _____ () C:\Users\Spravca\Desktop\Need For Speed Rivals_x86.lnk
2015-03-03 02:29 - 2015-03-03 02:29 - 00003088 _____ () C:\Users\Spravca\Documents\csharp notes.txt
2015-03-02 11:29 - 2015-03-02 11:29 - 00016872 _____ () C:\Users\Spravca\Downloads\Me!Me!Me!.zip (1).torrent
2015-03-02 11:29 - 2015-03-02 11:29 - 00013235 _____ () C:\Users\Spravca\Downloads\Me!Me!Me!.zip.torrent
2015-03-02 07:46 - 2015-03-02 07:46 - 00016083 _____ () C:\Users\Spravca\Downloads\[kickass.to]need.for.speed.rivals.blackbox.torrent
2015-03-02 06:25 - 2015-03-02 06:25 - 01151457 _____ () C:\Users\Spravca\Downloads\League of Legends Scraper Source.zip
2015-03-01 21:37 - 2015-03-01 21:37 - 00014481 _____ () C:\Users\Spravca\Downloads\AccountChecker.rar
2015-03-01 17:20 - 2015-03-01 17:20 - 00000539 _____ () C:\Users\Spravca\Downloads\grayBGtemplate.zip
2015-03-01 15:23 - 2015-03-01 15:23 - 00008389 _____ () C:\Users\Spravca\Downloads\d3d_antilag101 (2).zip
2015-03-01 09:37 - 2015-03-01 09:38 - 00327680 _____ () C:\Users\Spravca\Downloads\CsCppSetup.msi
2015-03-01 00:34 - 2015-03-01 00:34 - 00000000 ____D () C:\Users\Spravca\Downloads\Beta+Build+2
2015-02-28 23:13 - 2015-02-28 23:14 - 07596930 _____ () C:\Users\Spravca\Downloads\Bright+lights.rar
2015-02-28 21:52 - 2015-02-28 21:52 - 00056713 _____ () C:\Users\Spravca\Downloads\DeleteDuplicates.zip
2015-02-28 21:51 - 2015-02-28 21:51 - 00016840 _____ () C:\Users\Spravca\Downloads\TCP-src.rar
2015-02-28 19:49 - 2015-02-28 19:49 - 00002141 _____ () C:\Users\Spravca\Documents\register.php
2015-02-28 19:41 - 2015-02-28 19:41 - 00004191 _____ () C:\Users\Spravca\Downloads\phpass-0.3.tar.gz
2015-02-28 13:42 - 2015-02-28 13:42 - 00000000 ____D () C:\Users\Spravca\AppData\Local\CrashRpt
2015-02-28 13:20 - 2015-02-28 13:20 - 00087040 _____ () C:\Users\Spravca\Downloads\Skype Chat Logger.exe
2015-02-27 21:16 - 2015-02-27 21:16 - 00000000 ____D () C:\Users\Spravca\Downloads\boost_1_57_0
2015-02-27 18:53 - 2015-02-27 18:53 - 00135168 _____ () C:\Users\Spravca\Downloads\Crypter Example (C#).rar
2015-02-27 00:26 - 2015-02-27 00:26 - 03285108 _____ () C:\Users\Spravca\Downloads\Twitch God 2014 v16.4 (Vip Pro Edition).zip
2015-02-27 00:23 - 2015-02-27 00:23 - 00006585 _____ () C:\Users\Spravca\Downloads\twitch_tv_client_class.txt
2015-02-26 15:37 - 2015-02-26 15:37 - 08193413 _____ () C:\Users\Spravca\Downloads\WWW v1.6.rar
2015-02-26 00:53 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-26 00:53 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 22:45 - 2015-02-25 22:45 - 00185909 _____ () C:\Users\Spravca\Downloads\hwid_login_system.rar
2015-02-25 22:23 - 2015-02-25 22:23 - 00001952 _____ () C:\Users\Public\Desktop\Telerik JustDecompile.lnk
2015-02-25 22:06 - 2015-02-25 22:06 - 00123461 _____ () C:\Users\Spravca\Downloads\hwidSystem - Finished V3.rar
2015-02-25 21:54 - 2015-02-25 21:54 - 00001530 _____ () C:\Users\Spravca\Downloads\user.sql
2015-02-24 11:33 - 2015-02-24 11:33 - 00073834 _____ () C:\Users\Spravca\Downloads\Shmoop Book Summaries.zip
2015-02-23 06:08 - 2015-02-23 06:08 - 00008389 _____ () C:\Users\Spravca\Downloads\d3d_antilag101 (1).zip
2015-02-22 21:47 - 2015-02-22 21:48 - 00023126 _____ () C:\Users\Spravca\Downloads\qv8wm6AZ (1).cs
2015-02-22 12:47 - 2015-02-22 12:47 - 00005102 _____ () C:\Users\Spravca\Downloads\legitBotTest.rar
2015-02-22 04:14 - 2015-02-22 04:14 - 00010788 _____ () C:\Users\Spravca\Downloads\CrackMe_Latest.zip
2015-02-22 04:04 - 2015-02-22 04:04 - 02187390 _____ () C:\Users\Spravca\Downloads\ConfuserEx_bin.zip
2015-02-22 04:04 - 2015-02-22 04:04 - 00901743 _____ () C:\Users\Spravca\Downloads\ConfuserEx-0.4.0.zip
2015-02-21 23:48 - 2015-02-21 23:48 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Steam
2015-02-21 23:46 - 2015-02-21 23:46 - 00048308 _____ () C:\Users\Spravca\Downloads\Color-Detection-Bot-Src.zip
2015-02-21 23:39 - 2015-02-21 23:39 - 00000000 ____D () C:\Users\Spravca\Documents\Graphics
2015-02-20 15:15 - 2015-02-20 15:15 - 01822506 _____ () C:\Users\Spravca\Downloads\Fully Commented Solution C# MEMORY AIMBOT.zip
2015-02-20 13:29 - 2015-02-20 13:29 - 00001729 _____ () C:\Users\Spravca\Downloads\client.cs
2015-02-20 08:44 - 2015-02-23 06:06 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\VisualAssist
2015-02-20 07:48 - 2015-02-20 07:48 - 00000000 ____D () C:\Users\Spravca\Downloads\Visual Assist X 10.6.1830 crack
2015-02-20 07:47 - 2015-02-20 07:47 - 03622557 _____ () C:\Users\Spravca\Downloads\Visual Assist X 10.6.1830 crack.zip
2015-02-20 06:26 - 2015-02-20 06:26 - 00000000 ____D () C:\Users\Spravca\Downloads\YoloMouse-0.5.2
2015-02-20 00:17 - 2015-02-20 00:18 - 00000000 ____D () C:\Users\Spravca\AppData\Local\YoloMouse
2015-02-20 00:17 - 2015-02-20 00:17 - 00610304 _____ () C:\Users\Spravca\Downloads\YoloMouse64.msi
2015-02-20 00:17 - 2015-02-20 00:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YoloMouse
2015-02-20 00:17 - 2015-02-20 00:17 - 00000000 ____D () C:\Program Files\YoloMouse
2015-02-19 20:31 - 2015-02-19 20:31 - 00173813 _____ () C:\Users\Spravca\Downloads\YoloMouse-0.5.2.zip
2015-02-19 02:54 - 2015-02-20 08:50 - 00000000 ____D () C:\Users\Spravca\AppData\Local\JustCode
2015-02-19 02:54 - 2015-02-19 02:57 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\JustCode
2015-02-19 02:53 - 2015-02-19 02:53 - 00000000 ____D () C:\Users\Spravca\Documents\telerik
2015-02-19 02:42 - 2015-02-19 02:42 - 00702056 _____ (JetBrains) C:\Users\Spravca\Downloads\dotPeek.01.web.exe
2015-02-19 02:39 - 2015-02-19 02:40 - 03472656 _____ (Telerik AD) C:\Users\Spravca\Downloads\TelerikJustDecompileSetup_2014.3.1021.0 (1).exe
2015-02-19 02:33 - 2015-02-19 02:33 - 00025255 _____ () C:\Users\Spravca\Downloads\Reflector.FileDisassembler.zip
2015-02-19 01:57 - 2015-02-19 01:57 - 00000000 ____D () C:\Users\Spravca\Documents\qt
2015-02-19 01:50 - 2015-02-27 20:51 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\QtProject
2015-02-18 23:57 - 2015-02-18 23:57 - 00016850 _____ () C:\Users\Spravca\Downloads\InstaTheme.cs
2015-02-18 16:01 - 2015-02-18 16:02 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt
2015-02-18 15:41 - 2015-02-19 01:50 - 00000000 ____D () C:\Qt
2015-02-18 02:22 - 2015-02-18 02:22 - 00000000 ____D () C:\Users\Spravca\Downloads\Celestial World 2.0 12.11.2014
2015-02-17 18:24 - 2015-02-17 18:24 - 00000739 _____ () C:\Users\Public\Desktop\Laroxion Metin 2014.lnk
2015-02-17 18:23 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-17 18:23 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-17 18:23 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-17 18:23 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-17 12:08 - 2015-02-17 12:08 - 00006917 _____ () C:\Users\Spravca\Downloads\AQN!downloader v1.2.rar
2015-02-17 12:07 - 2015-02-17 12:07 - 00001489 _____ () C:\Users\Spravca\Downloads\Array Of Bytes.txt
2015-02-17 01:43 - 2015-02-17 01:43 - 00045056 _____ () C:\Users\Spravca\Downloads\M2Bob-dex73r.exe
2015-02-14 20:52 - 2015-02-14 20:52 - 00019618 _____ () C:\Users\Spravca\Downloads\Ekura.zip (1).torrent
2015-02-14 20:20 - 2015-02-13 22:07 - 00018432 _____ () C:\Users\Spravca\Downloads\osu!replayViewer.exe
2015-02-14 19:25 - 2015-02-14 19:25 - 00736769 _____ () C:\Users\Spravca\Downloads\JHack 1.2.0.rar
2015-02-14 18:05 - 2015-02-14 16:11 - 00031962 _____ () C:\Users\Spravca\Documents\Nico Nico Chorus - Leia (Natteke) [Collab].osu
2015-02-14 17:43 - 2015-02-14 17:43 - 00083182 _____ () C:\Users\Spravca\Downloads\osu!Smoked.7z
2015-02-14 16:45 - 2015-02-14 16:45 - 00007209 _____ () C:\Users\Spravca\Downloads\UnKnoWnCheaTs - Overlay_[www.unknowncheats.me]_.zip
2015-02-13 23:08 - 2015-02-13 23:08 - 00007316 _____ () C:\Users\Spravca\Downloads\hashchkulqa.zip
2015-02-13 22:09 - 2015-02-13 22:09 - 00007296 _____ () C:\Users\Spravca\Downloads\osu!replayViewer v1.0.rar
2015-02-13 21:41 - 2015-02-13 21:41 - 00035998 _____ () C:\Users\Spravca\Downloads\Browser Paid.rar
2015-02-13 02:04 - 2015-02-13 02:04 - 00024161 _____ () C:\Users\Spravca\Downloads\playbns_client_2 (1).torrent
2015-02-13 01:59 - 2015-02-13 02:00 - 03940864 _____ (KaryuuSoft) C:\Users\Spravca\Downloads\REngLauncher.exe
2015-02-13 01:59 - 2015-02-13 01:59 - 00024161 _____ () C:\Users\Spravca\Downloads\playbns_client_2.torrent
2015-02-13 00:55 - 2015-02-13 00:55 - 00896556 _____ () C:\Users\Spravca\Downloads\PeStudio846.zip
2015-02-12 21:08 - 2015-02-12 21:08 - 00003090 _____ () C:\Users\Spravca\Downloads\CheatEngine.zip
2015-02-12 20:16 - 2015-02-12 20:16 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Risen3
2015-02-12 19:59 - 2015-02-12 20:00 - 00068123 _____ () C:\Users\Spravca\Downloads\Darkest.CT
2015-02-12 19:59 - 2015-02-12 19:59 - 00029819 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7605.3dm.torrent
2015-02-12 14:33 - 2015-02-12 14:33 - 00022607 _____ () C:\Users\Spravca\Downloads\[kickass.to]risen.3.titan.lords.v1.20.dlcs.2014.pc.repack.by.rg.steamgames.torrent
2015-02-12 13:39 - 2015-02-12 13:39 - 00029821 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7612.3dm.torrent
2015-02-12 13:37 - 2015-02-12 13:37 - 00029978 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7567.3dm.torrent
2015-02-12 10:49 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-12 10:49 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-12 10:49 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-12 10:49 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 21:00 - 2015-02-11 21:00 - 00001514 _____ () C:\Users\Spravca\Downloads\cldz_15864881_dex.sql
2015-02-11 16:13 - 2015-02-11 16:13 - 00005845 _____ () C:\Users\Spravca\Downloads\register-login-forgot-password-email1.zip
2015-02-11 15:18 - 2015-02-11 15:18 - 00002050 _____ () C:\Users\Spravca\Downloads\Unity Login&Register.zip
2015-02-11 14:57 - 2015-02-11 14:57 - 00055175 _____ () C:\Users\Spravca\Downloads\Pacchetto C# + MySQL + PHP.zip
2015-02-11 14:00 - 2015-02-11 14:00 - 00000172 _____ () C:\Users\Spravca\Documents\connect.php
2015-02-11 13:58 - 2015-02-11 13:58 - 00000434 _____ () C:\Users\Spravca\Documents\login.php
2015-02-11 13:56 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-11 13:56 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 13:56 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-11 13:56 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 13:56 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 13:56 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 13:56 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-11 13:56 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 13:56 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-11 13:56 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 13:56 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-11 13:56 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-11 13:56 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-11 13:56 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-11 13:56 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-11 13:56 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 13:56 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 13:56 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 13:56 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 13:56 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 13:56 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 13:56 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 13:56 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 13:56 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-11 13:56 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 13:56 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 13:56 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-11 13:56 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-11 13:56 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 13:56 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 13:56 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 13:56 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 13:56 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-11 13:56 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 13:56 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 13:56 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 13:56 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-11 13:56 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 13:56 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 13:56 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 13:56 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 13:56 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 13:56 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 13:56 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 13:56 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 13:56 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 13:56 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 13:56 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 13:56 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-11 13:55 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 13:55 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 13:55 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-11 13:55 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-11 13:55 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-11 13:55 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 13:55 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-11 13:55 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 13:55 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-11 13:55 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-11 13:55 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-11 13:55 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 13:55 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-11 13:55 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 13:55 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 13:55 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 13:55 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 13:55 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-11 13:55 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-11 13:55 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 13:55 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 13:55 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-11 13:55 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-11 13:55 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-11 13:55 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-11 13:55 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-11 13:55 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-11 13:55 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-11 13:54 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 13:54 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-11 13:54 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-11 13:54 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-11 13:54 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 13:54 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 13:54 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-11 13:54 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-11 13:54 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 13:54 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 06:23 - 2015-02-11 06:23 - 00003719 _____ () C:\Users\Spravca\Documents\index.html
2015-02-11 01:08 - 2015-02-11 01:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2015-02-11 01:08 - 2015-02-11 01:08 - 00000000 ____D () C:\Program Files (x86)\MySQL
2015-02-11 01:05 - 2015-02-11 01:05 - 00015804 _____ () C:\Users\Spravca\Downloads\ConnectCsharpToMysql_Source.zip
2015-02-10 00:28 - 2015-02-10 00:28 - 00017963 _____ () C:\Users\Spravca\Downloads\main.cpp_--csgo_aimbot.cpp
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\Documents\Visual Studio 2013
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\JetBrains
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\AppData\Local\JetBrains
2015-02-09 23:19 - 2015-02-09 23:19 - 00274168 _____ () C:\Users\Aero\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-09 23:15 - 2015-02-09 23:16 - 00000000 ____D () C:\Users\Aero\AppData\Local\NVIDIA Corporation
2015-02-09 23:15 - 2015-02-09 23:15 - 00001377 _____ () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-09 23:15 - 2015-02-09 23:15 - 00000020 ___SH () C:\Users\Aero\ntuser.ini
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\WTablet
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\AVAST Software
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\Adobe
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Local\NVIDIA
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Local\Google
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero
2015-02-09 23:15 - 2013-01-17 22:54 - 00000000 ____D () C:\Users\Aero\AppData\Local\Microsoft Help
2015-02-09 23:15 - 2013-01-05 20:04 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\Macromedia
2015-02-09 23:15 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-09 23:15 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-09 22:46 - 2015-02-09 22:46 - 00398218 _____ () C:\Users\Spravca\Downloads\StrideLoggerC#.7z
2015-02-09 17:07 - 2015-02-09 17:07 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2015-02-09 17:03 - 2015-02-09 17:03 - 00639400 _____ (Oracle Corporation) C:\Users\Spravca\Downloads\chromeinstall-8u31.exe
2015-02-09 06:51 - 2015-02-09 06:51 - 00094972 _____ () C:\Users\Spravca\Downloads\LightshotMaster.rar
2015-02-09 06:40 - 2015-02-09 06:40 - 00063174 _____ () C:\Users\Spravca\Downloads\newCSGO -UC-FORUM_[www.unknowncheats.me]_ (1).rar
2015-02-09 01:41 - 2015-02-09 01:41 - 00111476 _____ () C:\Users\Spravca\Downloads\CSGO External by Teddi_[www.unknowncheats.me]__[www.unknowncheats.me]_.rar
2015-02-08 23:52 - 2015-02-08 23:52 - 00070590 _____ () C:\Users\Spravca\Downloads\KeepAlive.zip
2015-02-08 22:36 - 2015-02-08 22:36 - 00752264 _____ (Jitbit Software ) C:\Users\Spravca\Downloads\MacroRecorderSetup.exe
2015-02-08 21:20 - 2015-02-08 21:21 - 06175837 _____ () C:\Users\Spravca\Downloads\1.rar
2015-02-08 18:40 - 2015-02-08 18:40 - 00000000 ____D () C:\Users\Spravca\Documents\AssaultCube_v1.1
2015-02-08 11:41 - 2015-03-01 22:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDA Pro Free
2015-02-08 11:41 - 2015-02-08 11:42 - 00000000 ____D () C:\Program Files (x86)\IDA Free
2015-02-08 11:41 - 2015-02-08 11:41 - 00000987 _____ () C:\Users\Spravca\Desktop\IDA Pro Free.lnk
2015-02-08 11:41 - 2015-02-08 11:41 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Hex-Rays
2015-02-08 11:25 - 2015-02-08 11:25 - 01080110 _____ () C:\Users\Spravca\Downloads\crackme antileak_[www.unknowncheats.me]_ (1).rar
2015-02-07 22:02 - 2015-02-07 22:02 - 01302157 _____ () C:\Users\Spravca\Downloads\mod_sa_v4.3.3.2_source.7z
2015-02-06 17:06 - 2015-02-06 17:09 - 00000000 ____D () C:\Users\Spravca\Documents\GTA San Andreas User Files
2015-02-06 16:18 - 2015-02-06 16:18 - 00006590 _____ () C:\Users\Spravca\Downloads\osu!helper.rar
2015-02-06 13:34 - 2015-02-06 13:34 - 00012332 _____ () C:\Users\Spravca\Downloads\[kickass.so]head.first.c.3rd.edition.pdf.torrent
2015-02-06 13:06 - 2015-02-06 13:06 - 00511898 _____ () C:\Users\Spravca\Downloads\[kickass.so]c.48.pdf.ebooks.torrent
2015-02-06 11:11 - 2015-02-06 11:11 - 01006466 _____ () C:\Users\Spravca\Downloads\de4dot-v3-1.zip
2015-02-06 11:07 - 2015-02-06 11:07 - 00006918 _____ () C:\Users\Spravca\Downloads\osu!helper.zip
2015-02-06 01:07 - 2015-02-06 01:11 - 00000000 ____D () C:\Users\Spravca\AppData\Local\osu!
2015-02-06 01:06 - 2015-02-06 01:06 - 03231304 _____ (ppy) C:\Users\Spravca\Downloads\osu!install.exe
2015-02-06 01:06 - 2015-02-06 01:06 - 00000000 ____D () C:\Users\Spravca\Downloads\Localisation
2015-02-06 01:05 - 2015-02-06 01:09 - 00000946 _____ () C:\Users\Spravca\Desktop\osu!.lnk
2015-02-05 15:19 - 2015-02-05 15:19 - 00034277 _____ () C:\Users\Spravca\Downloads\[kickass.so]gta.san.andreas.pc.cracked.torrent
2015-02-05 15:19 - 2015-02-05 15:19 - 00000000 ____D () C:\Users\Spravca\Downloads\osubeatmaps
2015-02-04 22:16 - 2015-02-04 22:31 - 00000000 ____D () C:\Users\Spravca\Documents\AssaultCube_v1.2
2015-02-04 22:14 - 2015-02-04 22:14 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2015-02-04 22:14 - 2015-02-04 22:14 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2015-02-04 22:14 - 2015-02-04 22:14 - 00001630 _____ () C:\Users\Public\Desktop\AssaultCube.lnk
2015-02-04 22:14 - 2015-02-04 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AssaultCube
2015-02-04 22:14 - 2015-02-04 22:14 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2015-02-04 19:24 - 2015-02-04 19:24 - 00236550 _____ () C:\Users\Spravca\Downloads\osu! spinbot v2.2.1.rar
2015-02-04 19:24 - 2015-02-04 19:24 - 00000000 ____D () C:\Users\Spravca\Downloads\osu! spinbot v2.2.1
2015-02-04 19:16 - 2015-02-04 19:16 - 03548070 _____ () C:\Users\Spravca\Downloads\CheatEngine64src.rar
2015-02-04 16:22 - 2015-02-04 16:22 - 00158610 _____ () C:\Users\Spravca\Downloads\ICOFormat-2.1f1-win64.zip
2015-02-04 12:56 - 2015-02-04 12:56 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\NAppUpdateWinFormsSample
2015-02-04 12:55 - 2015-02-04 12:55 - 00000000 ____D () C:\Users\Spravca\AppData\Local\NuGet
2015-02-04 12:54 - 2015-02-04 12:54 - 01053286 _____ () C:\Users\Spravca\Downloads\NAppUpdate-master.zip
2015-02-04 12:40 - 2015-02-04 12:41 - 00120547 _____ () C:\Users\Spravca\Downloads\RedCell.UI.Controls.Demo-Version1.zip
2015-02-04 12:32 - 2015-02-04 12:33 - 00236035 _____ () C:\Users\Spravca\Downloads\RedCell.Diagnostics.Update-Source.zip
2015-02-04 12:25 - 2015-02-04 12:25 - 00109092 _____ () C:\Users\Spravca\Downloads\RedCell.Diagnostics.Update-Binaries.zip
2015-02-04 06:31 - 2015-02-04 06:31 - 01183904 _____ (Microsoft Corporation) C:\Users\Spravca\Downloads\wdexpress_full.exe
2015-02-03 23:13 - 2015-02-03 23:13 - 00756676 _____ () C:\Users\Spravca\Downloads\Hentai Catcher.rar
2015-02-03 23:12 - 2015-02-03 23:12 - 00004711 _____ () C:\Users\Spravca\Downloads\Biertijd Downloader v1.0.rar
2015-02-03 10:55 - 2015-02-03 10:55 - 00006488 _____ () C:\Users\Spravca\Downloads\ConsoleWidget.zip
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-05 19:22 - 2012-11-14 17:59 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Skype
2015-03-05 18:39 - 2009-07-14 05:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-05 18:39 - 2009-07-14 05:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-05 18:35 - 2012-11-13 14:55 - 01249012 _____ () C:\Windows\WindowsUpdate.log
2015-03-05 18:31 - 2014-07-24 22:51 - 00000000 ___RD () C:\Users\Spravca\Dropbox
2015-03-05 18:31 - 2014-07-24 22:47 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Dropbox
2015-03-05 18:30 - 2014-07-24 22:34 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-03-05 18:30 - 2012-11-28 20:21 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\TS3Client
2015-03-05 18:30 - 2012-11-15 13:21 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\uTorrent
2015-03-05 18:28 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-05 18:27 - 2012-11-13 15:25 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-05 18:25 - 2014-10-01 21:47 - 00001065 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-05 18:25 - 2014-07-04 05:34 - 00001302 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-05 18:25 - 2014-07-04 05:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-05 18:25 - 2012-11-13 14:56 - 00000955 _____ () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-05 18:23 - 2014-09-16 14:23 - 00000000 ____D () C:\Program Files (x86)\osu!
2015-03-05 18:21 - 2012-11-14 17:59 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-05 18:20 - 2012-12-17 23:50 - 00000000 ____D () C:\Program Files\trend micro
2015-03-05 17:27 - 2014-10-18 15:15 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-05 13:48 - 2012-11-18 22:24 - 00000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe PNG Format CS6 Prefs
2015-03-05 13:41 - 2013-02-24 23:14 - 00001456 _____ () C:\Users\Spravca\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-03-04 21:57 - 2013-01-25 13:45 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2015-03-04 21:56 - 2012-11-15 14:42 - 00000000 ____D () C:\GAMES
2015-03-04 21:55 - 2012-11-14 18:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-03-04 21:54 - 2014-01-18 05:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-03-04 21:54 - 2013-05-19 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hero Editor
2015-03-04 21:54 - 2013-02-15 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish
2015-03-04 21:54 - 2012-12-06 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jed's Half-Life Model Viewer 1.3.6
2015-03-04 21:52 - 2013-03-09 22:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-04 21:50 - 2013-07-17 23:25 - 00000000 ____D () C:\Program Files (x86)\XZONE REACTOR Application
2015-03-04 21:48 - 2014-09-16 15:16 - 00000000 ____D () C:\Program Files\SoftEther VPN Client
2015-03-04 21:48 - 2012-11-13 15:00 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-04 21:47 - 2014-09-05 15:56 - 00000000 ____D () C:\Users\Spravca\.nbi
2015-03-04 21:47 - 2013-11-09 20:25 - 00000000 ____D () C:\Program Files (x86)\RAR Password Unlocker
2015-03-04 21:46 - 2014-05-30 05:17 - 00000000 ____D () C:\ProgramData\Origin
2015-03-04 21:46 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-03-04 21:45 - 2012-12-22 10:45 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\.minecraft
2015-03-04 21:44 - 2013-12-03 21:29 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2015-03-04 21:41 - 2014-01-01 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MacroGamer
2015-03-04 21:41 - 2012-11-14 18:09 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-03-04 21:40 - 2014-02-10 10:39 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2015-03-04 21:39 - 2014-02-08 14:09 - 00000000 ____D () C:\Program Files (x86)\Hero Editor
2015-03-04 21:39 - 2013-03-02 00:39 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\IrfanView
2015-03-04 21:37 - 2012-11-15 14:36 - 00000000 ____D () C:\Program Files (x86)\GRETECH
2015-03-04 21:36 - 2012-12-03 19:12 - 00000600 _____ () C:\Users\Spravca\AppData\Roaming\winscp.rnd
2015-03-04 21:31 - 2013-08-03 15:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2015-03-04 21:31 - 2013-02-10 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2015-03-04 21:31 - 2013-02-10 12:20 - 00000000 ____D () C:\Program Files (x86)\GameSpy Arcade
2015-03-04 21:31 - 2012-11-13 15:05 - 00000000 ____D () C:\Program Files (x86)\GIGABYTE
2015-03-04 21:30 - 2014-01-29 02:11 - 00000000 ____D () C:\Program Files (x86)\FreeMacroPlayer
2015-03-04 21:29 - 2014-08-13 10:06 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Glyph
2015-03-04 21:29 - 2014-07-24 21:07 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-03-04 21:29 - 2012-12-02 00:01 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Mozilla
2015-03-04 21:29 - 2012-11-16 06:47 - 00000000 ____D () C:\Fraps
2015-03-04 21:29 - 2012-11-14 17:56 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Google
2015-03-04 21:28 - 2014-07-24 21:08 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-03-04 21:28 - 2013-03-18 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2015-03-04 21:28 - 2013-03-18 19:17 - 00000000 ____D () C:\Program Files (x86)\Cain
2015-03-04 21:28 - 2013-02-15 15:40 - 00000000 ____D () C:\Program Files (x86)\Clownfish
2015-03-04 21:26 - 2014-09-06 20:00 - 00000000 ____D () C:\Program Files\Apache Software Foundation
2015-03-04 21:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
2015-03-04 15:10 - 2014-02-01 11:45 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\OBS
2015-03-03 03:46 - 2015-01-18 09:43 - 00000000 ____D () C:\Program Files (x86)\R.G. Freedom
2015-03-01 22:25 - 2013-03-28 14:06 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Notepad++
2015-03-01 22:25 - 2012-11-13 16:15 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Winamp
2015-03-01 16:35 - 2014-12-17 08:02 - 00000000 ____D () C:\ebooks
2015-03-01 00:47 - 2014-09-24 13:01 - 00000000 ___RD () C:\Users\Spravca\OneDrive
2015-03-01 00:46 - 2014-03-30 22:13 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Spotify
2015-02-28 19:08 - 2014-03-30 22:14 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Spotify
2015-02-28 13:42 - 2014-07-24 22:47 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-28 13:41 - 2014-09-06 21:33 - 00000000 ____D () C:\Users\Spravca\Desktop\osu! Spin
2015-02-27 18:18 - 2014-09-02 00:03 - 00000000 ____D () C:\Users\Spravca\Documents\Visual Studio 2013
2015-02-26 18:41 - 2009-07-14 06:13 - 00797822 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-25 22:23 - 2013-11-23 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telerik
2015-02-19 03:44 - 2013-11-23 19:17 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Telerik_AD
2015-02-19 03:07 - 2013-11-23 19:17 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Telerik
2015-02-19 02:51 - 2013-11-23 19:20 - 00000000 ____D () C:\Program Files (x86)\Telerik
2015-02-19 02:48 - 2014-11-21 13:35 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\JetBrains
2015-02-19 02:46 - 2014-11-21 13:35 - 00000000 ____D () C:\Users\Spravca\AppData\Local\JetBrains
2015-02-19 02:27 - 2014-09-24 13:03 - 00000000 ____D () C:\Users\Spravca\Desktop\csgo ahk
2015-02-18 04:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-16 03:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-02-12 06:07 - 2014-12-12 03:56 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-12 06:07 - 2014-04-30 00:13 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-12 06:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2015-02-12 06:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2015-02-11 23:41 - 2012-11-13 16:08 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-11 23:39 - 2013-07-19 15:02 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-11 23:31 - 2012-11-14 17:41 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-11 20:38 - 2015-01-28 19:05 - 00000000 ____D () C:\Users\Spravca\Documents\ok mi frend
2015-02-11 01:08 - 2012-11-23 06:52 - 00805772 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-02-09 23:15 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-02-09 17:07 - 2012-11-15 20:58 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-02-09 17:06 - 2013-01-17 17:11 - 00000000 ____D () C:\Program Files\Java
2015-02-09 17:04 - 2014-10-03 00:57 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-09 17:04 - 2013-04-10 17:30 - 00000000 ____D () C:\Program Files (x86)\Java
2015-02-08 23:39 - 2013-03-30 17:37 - 00000000 ____D () C:\Users\Spravca\Downloads\flicky
2015-02-08 12:08 - 2014-12-20 16:30 - 00000000 ____D () C:\Users\Spravca\Downloads\odbg110
2015-02-06 17:06 - 2012-11-15 19:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2015-02-06 01:09 - 2014-11-11 06:15 - 00000954 _____ () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2015-02-04 19:24 - 2015-02-02 15:13 - 00000000 ____D () C:\Users\Spravca\Downloads\ILSpy_2.2.0.1706_Binaries
2015-02-04 11:22 - 2014-10-18 15:15 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-04 11:22 - 2014-07-04 05:32 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-04 11:22 - 2014-07-04 05:32 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-03 10:19 - 2013-08-04 12:03 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
==================== Files in the root of some directories =======
2013-01-19 08:44 - 2013-01-19 08:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-09-19 20:40 - 2014-09-19 20:40 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe GIF Format CS6 Prefs
2012-11-18 22:24 - 2015-03-05 13:48 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe PNG Format CS6 Prefs
2012-12-24 15:44 - 2013-08-31 23:33 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe Targa Format CS6 Prefs
2012-11-16 15:11 - 2014-06-11 16:42 - 0045270 _____ () C:\Users\Spravca\AppData\Roaming\room_v3.dat
2014-10-24 00:55 - 2014-10-24 00:55 - 0001399 _____ () C:\Users\Spravca\AppData\Roaming\SpeedRunnersLog.txt
2012-11-17 10:56 - 2012-11-17 10:56 - 0000004 _____ () C:\Users\Spravca\AppData\Roaming\steam_md5.dat
2012-11-15 12:55 - 2012-12-03 10:24 - 0581168 _____ () C:\Users\Spravca\AppData\Roaming\technic-launcher.jar.bak
2014-09-07 01:19 - 2014-09-07 01:19 - 0000044 _____ () C:\Users\Spravca\AppData\Roaming\twow_sysprepdt.dat
2012-12-03 19:12 - 2015-03-04 21:36 - 0000600 _____ () C:\Users\Spravca\AppData\Roaming\winscp.rnd
2013-02-24 23:14 - 2015-03-05 13:41 - 0001456 _____ () C:\Users\Spravca\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-01-16 00:21 - 2014-01-16 00:21 - 0000000 ___SH () C:\Users\Spravca\AppData\Local\LumaEmu
2012-11-18 17:00 - 2013-03-28 16:19 - 0000600 _____ () C:\Users\Spravca\AppData\Local\PUTTY.RND
2013-03-12 12:35 - 2013-03-12 12:35 - 0000003 _____ () C:\Users\Spravca\AppData\Local\updater.log
2013-03-12 12:35 - 2013-07-22 11:34 - 0000444 _____ () C:\Users\Spravca\AppData\Local\UserProducts.xml
2014-01-29 00:47 - 2014-01-29 00:47 - 0004107 _____ () C:\ProgramData\jfumnmdv.qtf
2014-12-26 01:05 - 2014-12-26 01:05 - 0000016 _____ () C:\ProgramData\mntemp
Files to move or delete:
====================
C:\Users\Spravca\jagex_cl_runescape_LIVE.dat
C:\Users\Spravca\random.dat
C:\Users\Spravca\Volumeid.exe
Some content of TEMP:
====================
C:\Users\Spravca\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcokd2o.dll
C:\Users\Spravca\AppData\Local\Temp\iv_uninstall.exe
C:\Users\Spravca\AppData\Local\Temp\Quarantine.exe
C:\Users\Spravca\AppData\Local\Temp\sqlite3.dll
C:\Users\Spravca\AppData\Local\Temp\~cbu_tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-23 07:48
==================== End Of Log ============================
Ran by Spravca (administrator) on SPRAVCA-PC on 05-03-2015 19:22:53
Running from C:\Users\Spravca\Downloads
Loaded Profiles: Spravca (Available profiles: Spravca & Aero)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\puush\puush.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamSpeak Systems GmbH) C:\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
() C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
() C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
() C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-29] (AVAST Software)
HKLM-x32\...\Run: [DEXTIFICATOR] => c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [10240 2015-03-01] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2013-12-28] ()
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [uTorrent] => C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.)
AppInit_DLLs-x32: => "" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=U270&ocid=U270DHP
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-144053010-3787646527-420655005-1000 -> {DB689796-A403-459C-AC20-478F9A7E1012} URL = https://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: AutorunsDisabled - No CLSID Value
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: WSISAllmytubechrome - No CLSID Value
Filter: AutorunsDisabled - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
Filter-x32: AutorunsDisabled - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9 02 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9 13 C:\Windows\SysWOW64\sslsp105.dll [74352] (SumRando)
Winsock: Catalog9-x64 01 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Winsock: Catalog9-x64 02 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Winsock: Catalog9-x64 13 C:\Windows\system32\sslsp105.dll [75888] (SumRando)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @idsoftware.com/QuakeLive -> C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-144053010-3787646527-420655005-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Spravca\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-05-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-24]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: No Name - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.sk/
CHR Profile: C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-11]
CHR Extension: (Plug.DJ Reloaded) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjejoakglbnhcedgkibnhdfhcollodp [2015-02-11]
CHR Extension: (Adblock Plus) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-02-11]
CHR Extension: (µBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-02-06]
CHR Extension: (iMacros for Chrome) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp [2015-02-11]
CHR Extension: (Gladiatus Crazy Add On) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfbmiedjenagoegiiabjfjpkhfocifkp [2015-02-11]
CHR Extension: (Tampermonkey) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-02-11]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2015-02-11]
CHR Extension: (Lounge Assistant) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjonnlehciedbcidabdglnnihcncbml [2015-02-11]
CHR Extension: (AdBlock Premium) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2015-02-11]
CHR Extension: (LoungeDestroyer) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-02-11]
CHR Extension: (AdBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-11]
CHR Extension: (Hola Better Internet) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-02-11]
CHR Extension: (Avast Online Security) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-25]
CHR Extension: (ScriptBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2015-03-05]
CHR Extension: (Url in title) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ignpacbgnbnkaiooknalneoeladjnfgb [2015-02-11]
CHR Extension: (Twitch Live) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiljidcefnbhbpamageahhblhbbhhopm [2015-02-11]
CHR Extension: (tf2outpost price integration) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndflpbfgklcjpkepbmfgjjancaocpnmp [2015-02-11]
CHR Extension: (Download to Firedrive) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlcbekplhffbagogapmldeeeghicmplg [2015-02-11]
CHR Extension: (Google Wallet) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-06]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-24]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S4 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-24] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-07-24] (AVAST Software)
S4 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-03] (Microsoft Corporation)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-06-12] (CyberGhost S.R.L)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-08-08] (LogMeIn, Inc.)
S4 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-31] ()
S4 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 SumRandoVPNService; C:\Program Files (x86)\SumRando\SumRando\misc\vpnmanagesvc.exe [108144 2014-09-30] (SumRando)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
S4 FileZilla Server; "C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 1PBLikesItAnal; C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [6144 2006-04-18] () [File not signed]
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 AR9271; C:\Windows\System32\DRIVERS\athuwx.sys [2224160 2011-07-28] (Atheros Communications, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-24] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-07-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-24] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-07-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-24] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-24] ()
S3 CEDRIVER60; C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys [64064 2014-06-20] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-01-08] ()
S4 LMIRfsClientNP; No ImagePath
R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0062.sys [28768 2014-03-10] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 Neo_VPN2; C:\Windows\System32\DRIVERS\Neo_0032.sys [28768 2014-09-16] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2014-09-16] (SoftEther VPN Project at University of Tsukuba, Japan.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-01-10] (Anchorfree Inc.)
R3 tun3326; C:\Windows\System32\DRIVERS\tun3326.sys [32368 2013-03-22] (The OpenVPN Project)
S3 WsAudio_Device; C:\Windows\System32\drivers\VirtualAudio.sys [31080 2013-09-03] (Wondershare)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [32240 2008-02-01] (Cyberlink Corp.)
S4 ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys [X]
S4 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S3 PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys [X]
S4 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S4 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-05 19:22 - 2015-03-05 19:23 - 00028134 _____ () C:\Users\Spravca\Downloads\FRST.txt
2015-03-05 19:22 - 2015-03-05 19:22 - 00000000 ____D () C:\FRST
2015-03-05 19:21 - 2015-03-05 19:22 - 02092544 _____ (Farbar) C:\Users\Spravca\Downloads\FRST64.exe
2015-03-05 18:21 - 2015-03-05 18:25 - 00000000 ____D () C:\AdwCleaner
2015-03-05 18:20 - 2015-03-05 18:20 - 02126848 _____ () C:\Users\Spravca\Downloads\AdwCleaner.exe
2015-03-05 17:50 - 2015-03-05 17:52 - 29638623 _____ () C:\Users\Spravca\Downloads\Hexalift v15 purplepink.rar
2015-03-05 17:38 - 2015-03-05 17:38 - 08859691 _____ () C:\Users\Spravca\Downloads\fml-ok.rar
2015-03-05 08:39 - 2015-03-05 08:40 - 11626133 _____ () C:\Users\Spravca\Downloads\filament+version+MathClass (1).osk
2015-03-05 08:08 - 2015-03-05 08:54 - 00273784 _____ () C:\Users\Spravca\AppData\Local\GDIPFONTCACHEV1.DAT
2015-03-05 08:08 - 2015-03-05 08:08 - 00273784 _____ () C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2015-03-05 08:06 - 2015-03-05 18:29 - 00000336 _____ () C:\Windows\setupact.log
2015-03-05 08:06 - 2015-03-05 08:13 - 05891184 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-05 08:06 - 2015-03-05 08:06 - 00005200 _____ () C:\Windows\PFRO.log
2015-03-05 08:06 - 2015-03-05 08:06 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-04 21:48 - 2015-03-04 21:48 - 00000000 ____D () C:\Users\Spravca\Documents\Tunngle
2015-03-04 21:04 - 2015-03-04 21:04 - 01222144 _____ () C:\Users\Spravca\Downloads\RSITx64.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 00000000 ____D () C:\rsit
2015-03-04 13:21 - 2015-03-04 13:21 - 00955801 _____ () C:\Users\Spravca\Desktop\oki.psd
2015-03-04 12:31 - 2015-03-04 12:32 - 06713466 _____ () C:\Users\Spravca\Downloads\nfs-rivals-v1.0-trainer-plus6.zip
2015-03-04 09:14 - 2015-03-04 09:14 - 00000070 _____ () C:\Users\Spravca\Documents\WTF.txt
2015-03-04 08:56 - 2015-03-04 08:57 - 01027505 _____ () C:\Users\Spravca\Downloads\LoLAccountChecker-master.zip
2015-03-04 08:41 - 2015-03-04 08:41 - 04971748 _____ () C:\Users\Spravca\Downloads\200k.txt
2015-03-04 08:36 - 2015-03-04 08:36 - 00000000 ____D () C:\crckingh
2015-03-04 08:35 - 2015-03-04 08:35 - 00051230 _____ () C:\Users\Spravca\Documents\euw.txt
2015-03-04 07:40 - 2015-03-04 07:40 - 00032394 _____ () C:\Users\Spravca\Downloads\globalhook2_src.zip
2015-03-03 18:54 - 2015-03-03 18:54 - 00012394 _____ () C:\Users\Spravca\Downloads\ZynOSScanner.zip
2015-03-03 18:53 - 2015-03-03 18:53 - 01225192 _____ () C:\Users\Spravca\Downloads\TD-W8951ND_V3.0_110729_FI.rar
2015-03-03 18:51 - 2015-03-03 18:51 - 00001455 _____ () C:\Users\Spravca\Downloads\zynos-attacker-master.zip
2015-03-03 18:36 - 2015-03-03 18:36 - 00000000 ____D () C:\Users\Spravca\Downloads\fDownloader - Builder and Stub Application
2015-03-03 17:45 - 2015-03-03 18:36 - 00443937 _____ () C:\Users\Spravca\Downloads\fDownloader - Builder and Stub Application.zip
2015-03-03 13:36 - 2015-03-03 13:36 - 01028838 _____ () C:\Users\Spravca\Downloads\nfs-rivals-v1.0-v1.1-trainer-plus14.zip
2015-03-03 13:36 - 2015-03-03 13:36 - 00000000 ____D () C:\Users\Spravca\Documents\FLiNGTrainer
2015-03-03 04:33 - 2015-03-03 04:33 - 00000000 ____D () C:\Users\Spravca\Documents\Ghost Games
2015-03-03 04:32 - 2015-03-03 04:32 - 00005255 _____ () C:\Users\Spravca\Downloads\card_war_game_console.cs
2015-03-03 04:32 - 2015-03-03 04:32 - 00004415 _____ () C:\Users\Spravca\Downloads\rock_paper_scissors.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00007111 _____ () C:\Users\Spravca\Downloads\c#_send_file_over_tcp.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00003211 _____ () C:\Users\Spravca\Downloads\c#_skype_api.cs
2015-03-03 04:31 - 2015-03-03 04:31 - 00001916 _____ () C:\Users\Spravca\Downloads\twitch_api_-_stream_info.cs
2015-03-03 04:28 - 2015-03-03 04:28 - 00000935 _____ () C:\Users\Spravca\Desktop\Need For Speed Rivals_x86.lnk
2015-03-03 02:29 - 2015-03-03 02:29 - 00003088 _____ () C:\Users\Spravca\Documents\csharp notes.txt
2015-03-02 11:29 - 2015-03-02 11:29 - 00016872 _____ () C:\Users\Spravca\Downloads\Me!Me!Me!.zip (1).torrent
2015-03-02 11:29 - 2015-03-02 11:29 - 00013235 _____ () C:\Users\Spravca\Downloads\Me!Me!Me!.zip.torrent
2015-03-02 07:46 - 2015-03-02 07:46 - 00016083 _____ () C:\Users\Spravca\Downloads\[kickass.to]need.for.speed.rivals.blackbox.torrent
2015-03-02 06:25 - 2015-03-02 06:25 - 01151457 _____ () C:\Users\Spravca\Downloads\League of Legends Scraper Source.zip
2015-03-01 21:37 - 2015-03-01 21:37 - 00014481 _____ () C:\Users\Spravca\Downloads\AccountChecker.rar
2015-03-01 17:20 - 2015-03-01 17:20 - 00000539 _____ () C:\Users\Spravca\Downloads\grayBGtemplate.zip
2015-03-01 15:23 - 2015-03-01 15:23 - 00008389 _____ () C:\Users\Spravca\Downloads\d3d_antilag101 (2).zip
2015-03-01 09:37 - 2015-03-01 09:38 - 00327680 _____ () C:\Users\Spravca\Downloads\CsCppSetup.msi
2015-03-01 00:34 - 2015-03-01 00:34 - 00000000 ____D () C:\Users\Spravca\Downloads\Beta+Build+2
2015-02-28 23:13 - 2015-02-28 23:14 - 07596930 _____ () C:\Users\Spravca\Downloads\Bright+lights.rar
2015-02-28 21:52 - 2015-02-28 21:52 - 00056713 _____ () C:\Users\Spravca\Downloads\DeleteDuplicates.zip
2015-02-28 21:51 - 2015-02-28 21:51 - 00016840 _____ () C:\Users\Spravca\Downloads\TCP-src.rar
2015-02-28 19:49 - 2015-02-28 19:49 - 00002141 _____ () C:\Users\Spravca\Documents\register.php
2015-02-28 19:41 - 2015-02-28 19:41 - 00004191 _____ () C:\Users\Spravca\Downloads\phpass-0.3.tar.gz
2015-02-28 13:42 - 2015-02-28 13:42 - 00000000 ____D () C:\Users\Spravca\AppData\Local\CrashRpt
2015-02-28 13:20 - 2015-02-28 13:20 - 00087040 _____ () C:\Users\Spravca\Downloads\Skype Chat Logger.exe
2015-02-27 21:16 - 2015-02-27 21:16 - 00000000 ____D () C:\Users\Spravca\Downloads\boost_1_57_0
2015-02-27 18:53 - 2015-02-27 18:53 - 00135168 _____ () C:\Users\Spravca\Downloads\Crypter Example (C#).rar
2015-02-27 00:26 - 2015-02-27 00:26 - 03285108 _____ () C:\Users\Spravca\Downloads\Twitch God 2014 v16.4 (Vip Pro Edition).zip
2015-02-27 00:23 - 2015-02-27 00:23 - 00006585 _____ () C:\Users\Spravca\Downloads\twitch_tv_client_class.txt
2015-02-26 15:37 - 2015-02-26 15:37 - 08193413 _____ () C:\Users\Spravca\Downloads\WWW v1.6.rar
2015-02-26 00:53 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-26 00:53 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 22:45 - 2015-02-25 22:45 - 00185909 _____ () C:\Users\Spravca\Downloads\hwid_login_system.rar
2015-02-25 22:23 - 2015-02-25 22:23 - 00001952 _____ () C:\Users\Public\Desktop\Telerik JustDecompile.lnk
2015-02-25 22:06 - 2015-02-25 22:06 - 00123461 _____ () C:\Users\Spravca\Downloads\hwidSystem - Finished V3.rar
2015-02-25 21:54 - 2015-02-25 21:54 - 00001530 _____ () C:\Users\Spravca\Downloads\user.sql
2015-02-24 11:33 - 2015-02-24 11:33 - 00073834 _____ () C:\Users\Spravca\Downloads\Shmoop Book Summaries.zip
2015-02-23 06:08 - 2015-02-23 06:08 - 00008389 _____ () C:\Users\Spravca\Downloads\d3d_antilag101 (1).zip
2015-02-22 21:47 - 2015-02-22 21:48 - 00023126 _____ () C:\Users\Spravca\Downloads\qv8wm6AZ (1).cs
2015-02-22 12:47 - 2015-02-22 12:47 - 00005102 _____ () C:\Users\Spravca\Downloads\legitBotTest.rar
2015-02-22 04:14 - 2015-02-22 04:14 - 00010788 _____ () C:\Users\Spravca\Downloads\CrackMe_Latest.zip
2015-02-22 04:04 - 2015-02-22 04:04 - 02187390 _____ () C:\Users\Spravca\Downloads\ConfuserEx_bin.zip
2015-02-22 04:04 - 2015-02-22 04:04 - 00901743 _____ () C:\Users\Spravca\Downloads\ConfuserEx-0.4.0.zip
2015-02-21 23:48 - 2015-02-21 23:48 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Steam
2015-02-21 23:46 - 2015-02-21 23:46 - 00048308 _____ () C:\Users\Spravca\Downloads\Color-Detection-Bot-Src.zip
2015-02-21 23:39 - 2015-02-21 23:39 - 00000000 ____D () C:\Users\Spravca\Documents\Graphics
2015-02-20 15:15 - 2015-02-20 15:15 - 01822506 _____ () C:\Users\Spravca\Downloads\Fully Commented Solution C# MEMORY AIMBOT.zip
2015-02-20 13:29 - 2015-02-20 13:29 - 00001729 _____ () C:\Users\Spravca\Downloads\client.cs
2015-02-20 08:44 - 2015-02-23 06:06 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\VisualAssist
2015-02-20 07:48 - 2015-02-20 07:48 - 00000000 ____D () C:\Users\Spravca\Downloads\Visual Assist X 10.6.1830 crack
2015-02-20 07:47 - 2015-02-20 07:47 - 03622557 _____ () C:\Users\Spravca\Downloads\Visual Assist X 10.6.1830 crack.zip
2015-02-20 06:26 - 2015-02-20 06:26 - 00000000 ____D () C:\Users\Spravca\Downloads\YoloMouse-0.5.2
2015-02-20 00:17 - 2015-02-20 00:18 - 00000000 ____D () C:\Users\Spravca\AppData\Local\YoloMouse
2015-02-20 00:17 - 2015-02-20 00:17 - 00610304 _____ () C:\Users\Spravca\Downloads\YoloMouse64.msi
2015-02-20 00:17 - 2015-02-20 00:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YoloMouse
2015-02-20 00:17 - 2015-02-20 00:17 - 00000000 ____D () C:\Program Files\YoloMouse
2015-02-19 20:31 - 2015-02-19 20:31 - 00173813 _____ () C:\Users\Spravca\Downloads\YoloMouse-0.5.2.zip
2015-02-19 02:54 - 2015-02-20 08:50 - 00000000 ____D () C:\Users\Spravca\AppData\Local\JustCode
2015-02-19 02:54 - 2015-02-19 02:57 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\JustCode
2015-02-19 02:53 - 2015-02-19 02:53 - 00000000 ____D () C:\Users\Spravca\Documents\telerik
2015-02-19 02:42 - 2015-02-19 02:42 - 00702056 _____ (JetBrains) C:\Users\Spravca\Downloads\dotPeek.01.web.exe
2015-02-19 02:39 - 2015-02-19 02:40 - 03472656 _____ (Telerik AD) C:\Users\Spravca\Downloads\TelerikJustDecompileSetup_2014.3.1021.0 (1).exe
2015-02-19 02:33 - 2015-02-19 02:33 - 00025255 _____ () C:\Users\Spravca\Downloads\Reflector.FileDisassembler.zip
2015-02-19 01:57 - 2015-02-19 01:57 - 00000000 ____D () C:\Users\Spravca\Documents\qt
2015-02-19 01:50 - 2015-02-27 20:51 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\QtProject
2015-02-18 23:57 - 2015-02-18 23:57 - 00016850 _____ () C:\Users\Spravca\Downloads\InstaTheme.cs
2015-02-18 16:01 - 2015-02-18 16:02 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qt
2015-02-18 15:41 - 2015-02-19 01:50 - 00000000 ____D () C:\Qt
2015-02-18 02:22 - 2015-02-18 02:22 - 00000000 ____D () C:\Users\Spravca\Downloads\Celestial World 2.0 12.11.2014
2015-02-17 18:24 - 2015-02-17 18:24 - 00000739 _____ () C:\Users\Public\Desktop\Laroxion Metin 2014.lnk
2015-02-17 18:23 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-17 18:23 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-17 18:23 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-17 18:23 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-17 12:08 - 2015-02-17 12:08 - 00006917 _____ () C:\Users\Spravca\Downloads\AQN!downloader v1.2.rar
2015-02-17 12:07 - 2015-02-17 12:07 - 00001489 _____ () C:\Users\Spravca\Downloads\Array Of Bytes.txt
2015-02-17 01:43 - 2015-02-17 01:43 - 00045056 _____ () C:\Users\Spravca\Downloads\M2Bob-dex73r.exe
2015-02-14 20:52 - 2015-02-14 20:52 - 00019618 _____ () C:\Users\Spravca\Downloads\Ekura.zip (1).torrent
2015-02-14 20:20 - 2015-02-13 22:07 - 00018432 _____ () C:\Users\Spravca\Downloads\osu!replayViewer.exe
2015-02-14 19:25 - 2015-02-14 19:25 - 00736769 _____ () C:\Users\Spravca\Downloads\JHack 1.2.0.rar
2015-02-14 18:05 - 2015-02-14 16:11 - 00031962 _____ () C:\Users\Spravca\Documents\Nico Nico Chorus - Leia (Natteke) [Collab].osu
2015-02-14 17:43 - 2015-02-14 17:43 - 00083182 _____ () C:\Users\Spravca\Downloads\osu!Smoked.7z
2015-02-14 16:45 - 2015-02-14 16:45 - 00007209 _____ () C:\Users\Spravca\Downloads\UnKnoWnCheaTs - Overlay_[www.unknowncheats.me]_.zip
2015-02-13 23:08 - 2015-02-13 23:08 - 00007316 _____ () C:\Users\Spravca\Downloads\hashchkulqa.zip
2015-02-13 22:09 - 2015-02-13 22:09 - 00007296 _____ () C:\Users\Spravca\Downloads\osu!replayViewer v1.0.rar
2015-02-13 21:41 - 2015-02-13 21:41 - 00035998 _____ () C:\Users\Spravca\Downloads\Browser Paid.rar
2015-02-13 02:04 - 2015-02-13 02:04 - 00024161 _____ () C:\Users\Spravca\Downloads\playbns_client_2 (1).torrent
2015-02-13 01:59 - 2015-02-13 02:00 - 03940864 _____ (KaryuuSoft) C:\Users\Spravca\Downloads\REngLauncher.exe
2015-02-13 01:59 - 2015-02-13 01:59 - 00024161 _____ () C:\Users\Spravca\Downloads\playbns_client_2.torrent
2015-02-13 00:55 - 2015-02-13 00:55 - 00896556 _____ () C:\Users\Spravca\Downloads\PeStudio846.zip
2015-02-12 21:08 - 2015-02-12 21:08 - 00003090 _____ () C:\Users\Spravca\Downloads\CheatEngine.zip
2015-02-12 20:16 - 2015-02-12 20:16 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Risen3
2015-02-12 19:59 - 2015-02-12 20:00 - 00068123 _____ () C:\Users\Spravca\Downloads\Darkest.CT
2015-02-12 19:59 - 2015-02-12 19:59 - 00029819 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7605.3dm.torrent
2015-02-12 14:33 - 2015-02-12 14:33 - 00022607 _____ () C:\Users\Spravca\Downloads\[kickass.to]risen.3.titan.lords.v1.20.dlcs.2014.pc.repack.by.rg.steamgames.torrent
2015-02-12 13:39 - 2015-02-12 13:39 - 00029821 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7612.3dm.torrent
2015-02-12 13:37 - 2015-02-12 13:37 - 00029978 _____ () C:\Users\Spravca\Downloads\[kickass.to]darkest.dungeon.build.7567.3dm.torrent
2015-02-12 10:49 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-12 10:49 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-12 10:49 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-12 10:49 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 21:00 - 2015-02-11 21:00 - 00001514 _____ () C:\Users\Spravca\Downloads\cldz_15864881_dex.sql
2015-02-11 16:13 - 2015-02-11 16:13 - 00005845 _____ () C:\Users\Spravca\Downloads\register-login-forgot-password-email1.zip
2015-02-11 15:18 - 2015-02-11 15:18 - 00002050 _____ () C:\Users\Spravca\Downloads\Unity Login&Register.zip
2015-02-11 14:57 - 2015-02-11 14:57 - 00055175 _____ () C:\Users\Spravca\Downloads\Pacchetto C# + MySQL + PHP.zip
2015-02-11 14:00 - 2015-02-11 14:00 - 00000172 _____ () C:\Users\Spravca\Documents\connect.php
2015-02-11 13:58 - 2015-02-11 13:58 - 00000434 _____ () C:\Users\Spravca\Documents\login.php
2015-02-11 13:56 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 13:56 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-11 13:56 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 13:56 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-11 13:56 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-11 13:56 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 13:56 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-11 13:56 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-11 13:56 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 13:56 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-11 13:56 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-11 13:56 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-11 13:56 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-11 13:56 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-11 13:56 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-11 13:56 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-11 13:56 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-11 13:56 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-11 13:56 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 13:56 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 13:56 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-11 13:56 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 13:56 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-11 13:56 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-11 13:56 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 13:56 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 13:56 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-11 13:56 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-11 13:56 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 13:56 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-11 13:56 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-11 13:56 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 13:56 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-11 13:56 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-11 13:56 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-11 13:56 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-11 13:56 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 13:56 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-11 13:56 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 13:56 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-11 13:56 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 13:56 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 13:56 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-11 13:56 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 13:56 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 13:56 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 13:56 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-11 13:56 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-11 13:56 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-11 13:56 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-11 13:56 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-11 13:56 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-11 13:56 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 13:56 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-11 13:55 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 13:55 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 13:55 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-11 13:55 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-11 13:55 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-11 13:55 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-11 13:55 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 13:55 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-11 13:55 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 13:55 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-11 13:55 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-11 13:55 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-11 13:55 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 13:55 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-11 13:55 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 13:55 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 13:55 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 13:55 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 13:55 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-11 13:55 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-11 13:55 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 13:55 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 13:55 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-11 13:55 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-11 13:55 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-11 13:55 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-11 13:55 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-11 13:55 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-11 13:55 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-11 13:54 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 13:54 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-11 13:54 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-11 13:54 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-11 13:54 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 13:54 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 13:54 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-11 13:54 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-11 13:54 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 13:54 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 06:23 - 2015-02-11 06:23 - 00003719 _____ () C:\Users\Spravca\Documents\index.html
2015-02-11 01:08 - 2015-02-11 01:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2015-02-11 01:08 - 2015-02-11 01:08 - 00000000 ____D () C:\Program Files (x86)\MySQL
2015-02-11 01:05 - 2015-02-11 01:05 - 00015804 _____ () C:\Users\Spravca\Downloads\ConnectCsharpToMysql_Source.zip
2015-02-10 00:28 - 2015-02-10 00:28 - 00017963 _____ () C:\Users\Spravca\Downloads\main.cpp_--csgo_aimbot.cpp
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\Documents\Visual Studio 2013
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\JetBrains
2015-02-09 23:24 - 2015-02-09 23:24 - 00000000 ____D () C:\Users\Aero\AppData\Local\JetBrains
2015-02-09 23:19 - 2015-02-09 23:19 - 00274168 _____ () C:\Users\Aero\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-09 23:15 - 2015-02-09 23:16 - 00000000 ____D () C:\Users\Aero\AppData\Local\NVIDIA Corporation
2015-02-09 23:15 - 2015-02-09 23:15 - 00001377 _____ () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-09 23:15 - 2015-02-09 23:15 - 00000020 ___SH () C:\Users\Aero\ntuser.ini
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\WTablet
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\AVAST Software
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\Adobe
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Local\NVIDIA
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero\AppData\Local\Google
2015-02-09 23:15 - 2015-02-09 23:15 - 00000000 ____D () C:\Users\Aero
2015-02-09 23:15 - 2013-01-17 22:54 - 00000000 ____D () C:\Users\Aero\AppData\Local\Microsoft Help
2015-02-09 23:15 - 2013-01-05 20:04 - 00000000 ____D () C:\Users\Aero\AppData\Roaming\Macromedia
2015-02-09 23:15 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-09 23:15 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\Aero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-09 22:46 - 2015-02-09 22:46 - 00398218 _____ () C:\Users\Spravca\Downloads\StrideLoggerC#.7z
2015-02-09 17:07 - 2015-02-09 17:07 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2015-02-09 17:03 - 2015-02-09 17:03 - 00639400 _____ (Oracle Corporation) C:\Users\Spravca\Downloads\chromeinstall-8u31.exe
2015-02-09 06:51 - 2015-02-09 06:51 - 00094972 _____ () C:\Users\Spravca\Downloads\LightshotMaster.rar
2015-02-09 06:40 - 2015-02-09 06:40 - 00063174 _____ () C:\Users\Spravca\Downloads\newCSGO -UC-FORUM_[www.unknowncheats.me]_ (1).rar
2015-02-09 01:41 - 2015-02-09 01:41 - 00111476 _____ () C:\Users\Spravca\Downloads\CSGO External by Teddi_[www.unknowncheats.me]__[www.unknowncheats.me]_.rar
2015-02-08 23:52 - 2015-02-08 23:52 - 00070590 _____ () C:\Users\Spravca\Downloads\KeepAlive.zip
2015-02-08 22:36 - 2015-02-08 22:36 - 00752264 _____ (Jitbit Software ) C:\Users\Spravca\Downloads\MacroRecorderSetup.exe
2015-02-08 21:20 - 2015-02-08 21:21 - 06175837 _____ () C:\Users\Spravca\Downloads\1.rar
2015-02-08 18:40 - 2015-02-08 18:40 - 00000000 ____D () C:\Users\Spravca\Documents\AssaultCube_v1.1
2015-02-08 11:41 - 2015-03-01 22:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDA Pro Free
2015-02-08 11:41 - 2015-02-08 11:42 - 00000000 ____D () C:\Program Files (x86)\IDA Free
2015-02-08 11:41 - 2015-02-08 11:41 - 00000987 _____ () C:\Users\Spravca\Desktop\IDA Pro Free.lnk
2015-02-08 11:41 - 2015-02-08 11:41 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Hex-Rays
2015-02-08 11:25 - 2015-02-08 11:25 - 01080110 _____ () C:\Users\Spravca\Downloads\crackme antileak_[www.unknowncheats.me]_ (1).rar
2015-02-07 22:02 - 2015-02-07 22:02 - 01302157 _____ () C:\Users\Spravca\Downloads\mod_sa_v4.3.3.2_source.7z
2015-02-06 17:06 - 2015-02-06 17:09 - 00000000 ____D () C:\Users\Spravca\Documents\GTA San Andreas User Files
2015-02-06 16:18 - 2015-02-06 16:18 - 00006590 _____ () C:\Users\Spravca\Downloads\osu!helper.rar
2015-02-06 13:34 - 2015-02-06 13:34 - 00012332 _____ () C:\Users\Spravca\Downloads\[kickass.so]head.first.c.3rd.edition.pdf.torrent
2015-02-06 13:06 - 2015-02-06 13:06 - 00511898 _____ () C:\Users\Spravca\Downloads\[kickass.so]c.48.pdf.ebooks.torrent
2015-02-06 11:11 - 2015-02-06 11:11 - 01006466 _____ () C:\Users\Spravca\Downloads\de4dot-v3-1.zip
2015-02-06 11:07 - 2015-02-06 11:07 - 00006918 _____ () C:\Users\Spravca\Downloads\osu!helper.zip
2015-02-06 01:07 - 2015-02-06 01:11 - 00000000 ____D () C:\Users\Spravca\AppData\Local\osu!
2015-02-06 01:06 - 2015-02-06 01:06 - 03231304 _____ (ppy) C:\Users\Spravca\Downloads\osu!install.exe
2015-02-06 01:06 - 2015-02-06 01:06 - 00000000 ____D () C:\Users\Spravca\Downloads\Localisation
2015-02-06 01:05 - 2015-02-06 01:09 - 00000946 _____ () C:\Users\Spravca\Desktop\osu!.lnk
2015-02-05 15:19 - 2015-02-05 15:19 - 00034277 _____ () C:\Users\Spravca\Downloads\[kickass.so]gta.san.andreas.pc.cracked.torrent
2015-02-05 15:19 - 2015-02-05 15:19 - 00000000 ____D () C:\Users\Spravca\Downloads\osubeatmaps
2015-02-04 22:16 - 2015-02-04 22:31 - 00000000 ____D () C:\Users\Spravca\Documents\AssaultCube_v1.2
2015-02-04 22:14 - 2015-02-04 22:14 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2015-02-04 22:14 - 2015-02-04 22:14 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2015-02-04 22:14 - 2015-02-04 22:14 - 00001630 _____ () C:\Users\Public\Desktop\AssaultCube.lnk
2015-02-04 22:14 - 2015-02-04 22:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AssaultCube
2015-02-04 22:14 - 2015-02-04 22:14 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2015-02-04 19:24 - 2015-02-04 19:24 - 00236550 _____ () C:\Users\Spravca\Downloads\osu! spinbot v2.2.1.rar
2015-02-04 19:24 - 2015-02-04 19:24 - 00000000 ____D () C:\Users\Spravca\Downloads\osu! spinbot v2.2.1
2015-02-04 19:16 - 2015-02-04 19:16 - 03548070 _____ () C:\Users\Spravca\Downloads\CheatEngine64src.rar
2015-02-04 16:22 - 2015-02-04 16:22 - 00158610 _____ () C:\Users\Spravca\Downloads\ICOFormat-2.1f1-win64.zip
2015-02-04 12:56 - 2015-02-04 12:56 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\NAppUpdateWinFormsSample
2015-02-04 12:55 - 2015-02-04 12:55 - 00000000 ____D () C:\Users\Spravca\AppData\Local\NuGet
2015-02-04 12:54 - 2015-02-04 12:54 - 01053286 _____ () C:\Users\Spravca\Downloads\NAppUpdate-master.zip
2015-02-04 12:40 - 2015-02-04 12:41 - 00120547 _____ () C:\Users\Spravca\Downloads\RedCell.UI.Controls.Demo-Version1.zip
2015-02-04 12:32 - 2015-02-04 12:33 - 00236035 _____ () C:\Users\Spravca\Downloads\RedCell.Diagnostics.Update-Source.zip
2015-02-04 12:25 - 2015-02-04 12:25 - 00109092 _____ () C:\Users\Spravca\Downloads\RedCell.Diagnostics.Update-Binaries.zip
2015-02-04 06:31 - 2015-02-04 06:31 - 01183904 _____ (Microsoft Corporation) C:\Users\Spravca\Downloads\wdexpress_full.exe
2015-02-03 23:13 - 2015-02-03 23:13 - 00756676 _____ () C:\Users\Spravca\Downloads\Hentai Catcher.rar
2015-02-03 23:12 - 2015-02-03 23:12 - 00004711 _____ () C:\Users\Spravca\Downloads\Biertijd Downloader v1.0.rar
2015-02-03 10:55 - 2015-02-03 10:55 - 00006488 _____ () C:\Users\Spravca\Downloads\ConsoleWidget.zip
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-05 19:22 - 2012-11-14 17:59 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Skype
2015-03-05 18:39 - 2009-07-14 05:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-05 18:39 - 2009-07-14 05:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-05 18:35 - 2012-11-13 14:55 - 01249012 _____ () C:\Windows\WindowsUpdate.log
2015-03-05 18:31 - 2014-07-24 22:51 - 00000000 ___RD () C:\Users\Spravca\Dropbox
2015-03-05 18:31 - 2014-07-24 22:47 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Dropbox
2015-03-05 18:30 - 2014-07-24 22:34 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-03-05 18:30 - 2012-11-28 20:21 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\TS3Client
2015-03-05 18:30 - 2012-11-15 13:21 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\uTorrent
2015-03-05 18:28 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-05 18:27 - 2012-11-13 15:25 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-05 18:25 - 2014-10-01 21:47 - 00001065 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-05 18:25 - 2014-07-04 05:34 - 00001302 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-05 18:25 - 2014-07-04 05:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-03-05 18:25 - 2012-11-13 14:56 - 00000955 _____ () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-05 18:23 - 2014-09-16 14:23 - 00000000 ____D () C:\Program Files (x86)\osu!
2015-03-05 18:21 - 2012-11-14 17:59 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-05 18:20 - 2012-12-17 23:50 - 00000000 ____D () C:\Program Files\trend micro
2015-03-05 17:27 - 2014-10-18 15:15 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-05 13:48 - 2012-11-18 22:24 - 00000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe PNG Format CS6 Prefs
2015-03-05 13:41 - 2013-02-24 23:14 - 00001456 _____ () C:\Users\Spravca\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-03-04 21:57 - 2013-01-25 13:45 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2015-03-04 21:56 - 2012-11-15 14:42 - 00000000 ____D () C:\GAMES
2015-03-04 21:55 - 2012-11-14 18:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-03-04 21:54 - 2014-01-18 05:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-03-04 21:54 - 2013-05-19 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hero Editor
2015-03-04 21:54 - 2013-02-15 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish
2015-03-04 21:54 - 2012-12-06 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jed's Half-Life Model Viewer 1.3.6
2015-03-04 21:52 - 2013-03-09 22:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-04 21:50 - 2013-07-17 23:25 - 00000000 ____D () C:\Program Files (x86)\XZONE REACTOR Application
2015-03-04 21:48 - 2014-09-16 15:16 - 00000000 ____D () C:\Program Files\SoftEther VPN Client
2015-03-04 21:48 - 2012-11-13 15:00 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-04 21:47 - 2014-09-05 15:56 - 00000000 ____D () C:\Users\Spravca\.nbi
2015-03-04 21:47 - 2013-11-09 20:25 - 00000000 ____D () C:\Program Files (x86)\RAR Password Unlocker
2015-03-04 21:46 - 2014-05-30 05:17 - 00000000 ____D () C:\ProgramData\Origin
2015-03-04 21:46 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-03-04 21:45 - 2012-12-22 10:45 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\.minecraft
2015-03-04 21:44 - 2013-12-03 21:29 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2015-03-04 21:41 - 2014-01-01 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MacroGamer
2015-03-04 21:41 - 2012-11-14 18:09 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-03-04 21:40 - 2014-02-10 10:39 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2015-03-04 21:39 - 2014-02-08 14:09 - 00000000 ____D () C:\Program Files (x86)\Hero Editor
2015-03-04 21:39 - 2013-03-02 00:39 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\IrfanView
2015-03-04 21:37 - 2012-11-15 14:36 - 00000000 ____D () C:\Program Files (x86)\GRETECH
2015-03-04 21:36 - 2012-12-03 19:12 - 00000600 _____ () C:\Users\Spravca\AppData\Roaming\winscp.rnd
2015-03-04 21:31 - 2013-08-03 15:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2015-03-04 21:31 - 2013-02-10 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2015-03-04 21:31 - 2013-02-10 12:20 - 00000000 ____D () C:\Program Files (x86)\GameSpy Arcade
2015-03-04 21:31 - 2012-11-13 15:05 - 00000000 ____D () C:\Program Files (x86)\GIGABYTE
2015-03-04 21:30 - 2014-01-29 02:11 - 00000000 ____D () C:\Program Files (x86)\FreeMacroPlayer
2015-03-04 21:29 - 2014-08-13 10:06 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Glyph
2015-03-04 21:29 - 2014-07-24 21:07 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-03-04 21:29 - 2012-12-02 00:01 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Mozilla
2015-03-04 21:29 - 2012-11-16 06:47 - 00000000 ____D () C:\Fraps
2015-03-04 21:29 - 2012-11-14 17:56 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Google
2015-03-04 21:28 - 2014-07-24 21:08 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-03-04 21:28 - 2013-03-18 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2015-03-04 21:28 - 2013-03-18 19:17 - 00000000 ____D () C:\Program Files (x86)\Cain
2015-03-04 21:28 - 2013-02-15 15:40 - 00000000 ____D () C:\Program Files (x86)\Clownfish
2015-03-04 21:26 - 2014-09-06 20:00 - 00000000 ____D () C:\Program Files\Apache Software Foundation
2015-03-04 21:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system
2015-03-04 15:10 - 2014-02-01 11:45 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\OBS
2015-03-03 03:46 - 2015-01-18 09:43 - 00000000 ____D () C:\Program Files (x86)\R.G. Freedom
2015-03-01 22:25 - 2013-03-28 14:06 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Notepad++
2015-03-01 22:25 - 2012-11-13 16:15 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Winamp
2015-03-01 16:35 - 2014-12-17 08:02 - 00000000 ____D () C:\ebooks
2015-03-01 00:47 - 2014-09-24 13:01 - 00000000 ___RD () C:\Users\Spravca\OneDrive
2015-03-01 00:46 - 2014-03-30 22:13 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Spotify
2015-02-28 19:08 - 2014-03-30 22:14 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Spotify
2015-02-28 13:42 - 2014-07-24 22:47 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-28 13:41 - 2014-09-06 21:33 - 00000000 ____D () C:\Users\Spravca\Desktop\osu! Spin
2015-02-27 18:18 - 2014-09-02 00:03 - 00000000 ____D () C:\Users\Spravca\Documents\Visual Studio 2013
2015-02-26 18:41 - 2009-07-14 06:13 - 00797822 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-25 22:23 - 2013-11-23 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telerik
2015-02-19 03:44 - 2013-11-23 19:17 - 00000000 ____D () C:\Users\Spravca\AppData\Local\Telerik_AD
2015-02-19 03:07 - 2013-11-23 19:17 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\Telerik
2015-02-19 02:51 - 2013-11-23 19:20 - 00000000 ____D () C:\Program Files (x86)\Telerik
2015-02-19 02:48 - 2014-11-21 13:35 - 00000000 ____D () C:\Users\Spravca\AppData\Roaming\JetBrains
2015-02-19 02:46 - 2014-11-21 13:35 - 00000000 ____D () C:\Users\Spravca\AppData\Local\JetBrains
2015-02-19 02:27 - 2014-09-24 13:03 - 00000000 ____D () C:\Users\Spravca\Desktop\csgo ahk
2015-02-18 04:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-16 03:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-02-12 06:07 - 2014-12-12 03:56 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-12 06:07 - 2014-04-30 00:13 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-12 06:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2015-02-12 06:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2015-02-11 23:41 - 2012-11-13 16:08 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-11 23:39 - 2013-07-19 15:02 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-11 23:31 - 2012-11-14 17:41 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-11 20:38 - 2015-01-28 19:05 - 00000000 ____D () C:\Users\Spravca\Documents\ok mi frend
2015-02-11 01:08 - 2012-11-23 06:52 - 00805772 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-02-09 23:15 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-02-09 17:07 - 2012-11-15 20:58 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-02-09 17:06 - 2013-01-17 17:11 - 00000000 ____D () C:\Program Files\Java
2015-02-09 17:04 - 2014-10-03 00:57 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-02-09 17:04 - 2014-10-03 00:56 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-09 17:04 - 2013-04-10 17:30 - 00000000 ____D () C:\Program Files (x86)\Java
2015-02-08 23:39 - 2013-03-30 17:37 - 00000000 ____D () C:\Users\Spravca\Downloads\flicky
2015-02-08 12:08 - 2014-12-20 16:30 - 00000000 ____D () C:\Users\Spravca\Downloads\odbg110
2015-02-06 17:06 - 2012-11-15 19:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2015-02-06 01:09 - 2014-11-11 06:15 - 00000954 _____ () C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2015-02-04 19:24 - 2015-02-02 15:13 - 00000000 ____D () C:\Users\Spravca\Downloads\ILSpy_2.2.0.1706_Binaries
2015-02-04 11:22 - 2014-10-18 15:15 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-04 11:22 - 2014-07-04 05:32 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-04 11:22 - 2014-07-04 05:32 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-03 10:19 - 2013-08-04 12:03 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
==================== Files in the root of some directories =======
2013-01-19 08:44 - 2013-01-19 08:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-09-19 20:40 - 2014-09-19 20:40 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe GIF Format CS6 Prefs
2012-11-18 22:24 - 2015-03-05 13:48 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe PNG Format CS6 Prefs
2012-12-24 15:44 - 2013-08-31 23:33 - 0000132 _____ () C:\Users\Spravca\AppData\Roaming\Adobe Targa Format CS6 Prefs
2012-11-16 15:11 - 2014-06-11 16:42 - 0045270 _____ () C:\Users\Spravca\AppData\Roaming\room_v3.dat
2014-10-24 00:55 - 2014-10-24 00:55 - 0001399 _____ () C:\Users\Spravca\AppData\Roaming\SpeedRunnersLog.txt
2012-11-17 10:56 - 2012-11-17 10:56 - 0000004 _____ () C:\Users\Spravca\AppData\Roaming\steam_md5.dat
2012-11-15 12:55 - 2012-12-03 10:24 - 0581168 _____ () C:\Users\Spravca\AppData\Roaming\technic-launcher.jar.bak
2014-09-07 01:19 - 2014-09-07 01:19 - 0000044 _____ () C:\Users\Spravca\AppData\Roaming\twow_sysprepdt.dat
2012-12-03 19:12 - 2015-03-04 21:36 - 0000600 _____ () C:\Users\Spravca\AppData\Roaming\winscp.rnd
2013-02-24 23:14 - 2015-03-05 13:41 - 0001456 _____ () C:\Users\Spravca\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-01-16 00:21 - 2014-01-16 00:21 - 0000000 ___SH () C:\Users\Spravca\AppData\Local\LumaEmu
2012-11-18 17:00 - 2013-03-28 16:19 - 0000600 _____ () C:\Users\Spravca\AppData\Local\PUTTY.RND
2013-03-12 12:35 - 2013-03-12 12:35 - 0000003 _____ () C:\Users\Spravca\AppData\Local\updater.log
2013-03-12 12:35 - 2013-07-22 11:34 - 0000444 _____ () C:\Users\Spravca\AppData\Local\UserProducts.xml
2014-01-29 00:47 - 2014-01-29 00:47 - 0004107 _____ () C:\ProgramData\jfumnmdv.qtf
2014-12-26 01:05 - 2014-12-26 01:05 - 0000016 _____ () C:\ProgramData\mntemp
Files to move or delete:
====================
C:\Users\Spravca\jagex_cl_runescape_LIVE.dat
C:\Users\Spravca\random.dat
C:\Users\Spravca\Volumeid.exe
Some content of TEMP:
====================
C:\Users\Spravca\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcokd2o.dll
C:\Users\Spravca\AppData\Local\Temp\iv_uninstall.exe
C:\Users\Spravca\AppData\Local\Temp\Quarantine.exe
C:\Users\Spravca\AppData\Local\Temp\sqlite3.dll
C:\Users\Spravca\AppData\Local\Temp\~cbu_tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-23 07:48
==================== End Of Log ============================
Re: Preventivka
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-03-2015 01
Ran by Spravca at 2015-03-05 19:23:45
Running from C:\Users\Spravca\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
.NET Obfuscation Checker 1 (HKLM\...\{84E871E3-7AC2-4DC8-B789-767A0386DC97}) (Version: 1.0.0.404 - Red Gate Software Ltd)
.NET Reflector Desktop (HKLM-x32\...\{3D083545-D87F-4053-81AB-50B212642EC3}) (Version: 8.2.0.42 - Red Gate Software Ltd)
µTorrent (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.222 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.5) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aktualizácie NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
AMX Mod X Installer 1.8.2 (HKLM-x32\...\AMX Mod X Installer) (Version: 1.8.2 - AMX Mod X Dev Team)
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.4 - Microsoft Corporation) Hidden
Application Insights Tools for Visual Studio Express 2013 for Web (x32 Version: 2.4 - Microsoft Corporation) Hidden
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AutoHotkey 1.1.14.03 (HKLM\...\AutoHotkey) (Version: 1.1.14.03 - Lexikos)
AutoIt v3.3.8.1 (HKLM-x32\...\AutoItv3) (Version: - AutoIt Team)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
AzureTools.Notifications.VwdExpress (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bloody5 (HKLM-x32\...\Bloody3) (Version: 14.08.0010 - Bloody)
Build Tools - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.25 - Piriform)
CodeBlocks (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
Color Symphony (HKLM-x32\...\Steam App 317410) (Version: - REMIMORY)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version: - Nexon)
Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1531 - CyberLink Corp.)
DayZ Commander (HKLM-x32\...\{790412BB-B6CE-459B-9E17-7DA7C20FC98C}) (Version: 0.9.124 - Dotjosh Studios)
Dedicated Server (HKLM-x32\...\Steam App 5) (Version: - Valve)
Defraggler (HKLM\...\Defraggler) (Version: 2.12 - Piriform)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dropbox (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - )
Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
Etron USB3.0 Host Controller (x32 Version: 0.104 - Etron Technology) Hidden
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{5588D686-D23B-4C9D-BDFA-2A7875CD3722}) (Version: 1.63.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.63.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
HexEdit (HKLM-x32\...\{083EF76E-0760-4D7A-9508-0B88A3AF1889}) (Version: 4.0.0 - Expert Commercial Software Pty Ltd)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version: - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
IDA Pro Free v5.0 (HKLM-x32\...\IDA Pro Free_is1) (Version: - Hex-Rays SA)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java SE Development Kit 8 Update 20 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180200}) (Version: 8.0.200.26 - Oracle Corporation)
JetBrains ReSharper 8.1 (HKLM-x32\...\{AAF5434A-5006-48FA-95C2-A833D4E4ADDF}) (Version: 8.1.23.546 - JetBrains Inc)
KeePass Password Safe 1.28 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.28 - Dominik Reichl)
Killing Floor (HKLM-x32\...\Killing Floor_is1) (Version: Killing Floor V.1060 - ZM)
Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.236 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.236 - LogMeIn, Inc.) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{3C09DE13-867C-4289-9F95-4510BB3A5F57}) (Version: 11.4.1 - Red Giant Software)
Magic Bullet Suite 64-bit (Version: 11.4.1 - Red Giant Software) Hidden
Memory Profiler (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 for Web - ENU (HKLM-x32\...\{3e544097-53d1-4252-98a6-93cc12a6d487}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Premium 2013 with Update 4 (HKLM-x32\...\{fec93b6d-17f6-4952-96e1-2af5a525cf5d}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2013 (HKLM-x32\...\{cd09eea6-d0b3-4246-bb80-e047ceadf61f}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.)
MK HS TOOL (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\HS TOOL) (Version: - )
Mozilla Firefox 32.0.3 (x86 sk) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 sk)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MySQL Connector Net 6.8.4 (HKLM-x32\...\{04213F7B-361D-4E5A-B96F-D53009A854CA}) (Version: 6.8.4 - Oracle)
Need For Speed Rivals (HKLM-x32\...\{0657F865-25B6-4391-A3B5-9917CF291AB3}) (Version: 6.0 - Black Box)
Nero 8 (HKLM-x32\...\{E2C00C8C-3D0C-40DF-BC67-44321C9E1051}) (Version: 8.2.111 - Nero AG)
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version: - )
NNScript (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\NoNameScript) (Version: 4.22 - ESNation)
Node.js (HKLM\...\{D741B7D4-2BC4-43B4-B412-2A410621210B}) (Version: 0.10.28 - Joyent, Inc. and other Node contributors)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.1 - )
NVIDIA 3D Vision radič ovládača 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.75 - NVIDIA Corporation)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version: - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafický ovládač 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Oracle VM VirtualBox 4.2.18 (HKLM\...\{230C9C86-26A9-437F-8152-34D5F4C3F680}) (Version: 4.2.18 - Oracle Corporation)
osu! (HKLM-x32\...\{69dd0bcd-d4a6-4c5c-a9b8-2a7d58fa2fd4}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.4 - Power Software Ltd)
PowreShellIntegration.Notifications (x32 Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
ProjectPowder (x32 Version: 1.67.0000 - Outspark) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Python 2.7.5 (HKLM-x32\...\{DBDD570E-0952-475f-9453-AB88F3DD5659}) (Version: 2.7.5150 - Python Software Foundation)
Python 3.4.2 (64-bit) (HKLM\...\{CD723946-09C1-38D3-8542-732BA931E9EF}) (Version: 3.4.2150 - Python Software Foundation)
Python Tools Redirection Template (x32 Version: 1.1 - Microsoft Corporation) Hidden
Python Tools Redirection Template (x32 Version: 1.3 - Microsoft Corporation) Hidden
Qt (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Qt) (Version: 1.0.1 - Digia Plc)
Quake Live Mozilla Plugin (HKLM-x32\...\{FA66CFD7-0977-4C45-AACD-A8BB994B1A05}) (Version: 1.0.520 - id Software)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAMRush 1.0.6.917 (HKLM-x32\...\RAMRush_is1) (Version: - FTweak, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Release Management for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
SciTE4AutoHotkey v3.0.06 (HKLM-x32\...\SciTE4AutoHotkey) (Version: v3.0.06 - fincs)
SciTE4AutoIt3 4/5/2013 (HKLM-x32\...\SciTE4AutoIt3) (Version: 4/5/2013 - Jos van der Zande)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Special Uninstaller version 3.0 (HKLM-x32\...\{46744C87-EE41-4BA3-A444-C2DECC145FC0}_is1) (Version: 3.0 - http://www.specialuninstaller.com/)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
Spotify (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steam Trading Card Beta Access (HKLM-x32\...\Steam App 202352) (Version: - )
SumRando (HKLM-x32\...\SumRandoSumRando) (Version: 1.0.0.164 - SumRando)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
Super Monday Night Combat (HKLM-x32\...\Steam App 104700) (Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Swords and Soldiers HD (HKLM-x32\...\Steam App 63500) (Version: - Ronimo Games)
System Requirements Lab (HKLM-x32\...\{8DCAB1D8-F20C-4733-9B5F-646DDFEB59C9}) (Version: 6.1.1.0 - Husdawg, LLC)
System Requirements Lab (HKLM-x32\...\{92F39985-0DA5-4CC4-869F-2A3048C182E6}) (Version: 4.5.13.0 - Husdawg, LLC)
TCPEye 1.0 (HKLM-x32\...\{998C9435-DAF8-4BDF-B9A5-F844B01D524C}_is1) (Version: - Free Software Relase)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
Telerik Control Panel (HKLM-x32\...\{105D7958-AA6D-4299-BDBD-E6AB2A43043E}) (Version: 13.3.1030.0 - Telerik AD)
Telerik JustCode Q3 2014 (HKLM-x32\...\{B4484969-7771-416D-AFAB-AA9FC328BFFE}) (Version: 14.3.1022.2 - Telerik AD)
Telerik JustDecompile Q1 2015 (HKLM-x32\...\{043079C4-E7ED-4D19-9CB5-DB44D5C239B6}) (Version: 15.1.217.0 - Telerik AD)
Telerik UI for ASP.NET AJAX Q3 2014 SP1 (HKLM-x32\...\{A68043EE-B336-445F-9098-261764554920}) (Version: 14.3.1209.0 - Telerik AD)
Telerik UI for WPF Q3 2014 SP1 (HKLM-x32\...\{3244B48E-DD39-411D-9C6A-1444B891D523}) (Version: 14.3.1202.0 - Telerik AD)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version: - Ubisoft Montreal)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - Runic Games)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
Unity Web Player (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unity3d Obfuscator v 1.3.18 (39) (HKLM-x32\...\Unity3d Obfuscator_is1) (Version: - Tech-Next Software Ltd.)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2013 Update 4 (KB2829760) (HKLM-x32\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
VS Update core components (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR archivátor (HKLM\...\WinRAR archiver) (Version: - )
WinSCP 5.1.2 (HKLM-x32\...\winscp3_is1) (Version: 5.1.2 - Martin Prikryl)
Workflow Manager Client 1.0 (Version: 2.0.40131.0 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.40326.0 - Microsoft Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Xilisoft MP4 Converter (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Xilisoft MP4 Converter) (Version: 7.7.2.20130122 - Xilisoft)
YoloMouse (HKLM\...\{A8B7132E-F8F3-4518-8781-019DBCB963E5}) (Version: 0.5.2.0 - HaPpY)
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {17515E06-8DFC-4038-AA22-DB3AA8C64820} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628 => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07] (Google Inc.)
Task: {34CE9AC6-E23B-45E0-9E2A-CB4CF26EF3F8} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {38A41977-FFD0-43A4-8DA8-F59172E5EC5F} - System32\Tasks\AdobeAAMUpdater-1.0-Spravca-PC-Spravca => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {3C53DBCA-DC5E-4AE4-83B2-FAC041E3F53D} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Task: {3C9ECB89-DE71-4199-9110-0F33CFBA8F25} - System32\Tasks\{853D6FBE-2E80-44D3-9352-6153EDE6D088} => pcalua.exe -a C:\Users\Spravca\Downloads\SciTE4AHK3006_Install.exe -d C:\Users\Spravca\Downloads
Task: {49450446-8C7D-4372-B53F-13220A2A7505} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA => C:\Users\Spravca\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-22] (Facebook Inc.)
Task: {5C10ACA1-27BE-4C32-B474-A7005CAC9263} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core => C:\Users\Spravca\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-22] (Facebook Inc.)
Task: {6C0A64F3-06A6-45C4-AE76-231A53AD775B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20] (Google Inc.)
Task: {7D98335D-FFB1-4112-B62D-685F4E0770CC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-25] (Adobe Systems Incorporated)
Task: {87F20410-5FE5-42D6-8DA7-EACE1476D609} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {8D67ACF4-41B8-4F65-A9C4-0B230D1A4276} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-11-23] (Piriform Ltd)
Task: {A406AFE8-7395-442C-83D2-C6DD290FAF7E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07] (Google Inc.)
Task: {AA3B7C8D-0F0E-4622-BE59-E454B72E9BA3} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-24] (AVAST Software)
Task: {B79E90F8-6FA8-4977-B1AB-5C023E24C23B} - System32\Tasks\{69CD17D5-3006-4CDD-BCAA-132EA3ACB712} => pcalua.exe -a C:\Users\Spravca\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=cvs <==== ATTENTION
Task: {DB4BF08E-B838-413F-8704-E8614EDD65F6} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [2013-01-02] ()
Task: {E6ABA8AE-33E9-432B-8102-65B6D9C803FE} - System32\Tasks\Telerik Control Panel Notifier Spravca-PC_Spravca => TelerikControlPanelNotifier.exe
Task: {ED3B0A3A-3A0D-45E4-B8C5-32D29EF96E9B} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {EE814832-429E-4C23-A6C1-25F33CB3244C} - System32\Tasks\gg_uac_daemon_Spravca => C:\Program Files (x86)\Garena Plus\ggdllhost.exe [2014-06-11] ()
Task: {F5434074-5ABC-427A-82D4-D2693A711516} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2012-11-13 15:14 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-11-11 14:22 - 2014-12-22 21:42 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2012-01-10 14:41 - 2013-12-28 17:21 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-01-21 16:54 - 2015-01-27 07:13 - 01294336 _____ () C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
2015-02-28 21:51 - 2015-02-28 21:51 - 02445304 _____ () C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
2015-02-28 21:51 - 2015-02-28 21:51 - 03952120 _____ () C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
2015-01-27 07:47 - 2015-01-27 07:47 - 00074752 _____ () C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
2014-07-24 22:32 - 2014-07-24 22:32 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2015-03-05 12:25 - 2015-03-05 12:25 - 02917376 _____ () C:\Program Files\AVAST Software\Avast\defs\15030500\algo.dll
2014-09-25 13:02 - 2014-09-25 13:02 - 00081056 _____ () C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\LoggingPlatform.DLL
2015-02-10 22:00 - 2015-02-10 22:00 - 00750080 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-05 18:29 - 2015-03-05 18:29 - 00043008 _____ () c:\users\spravca\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcokd2o.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00047616 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00865280 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00200704 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-07-24 22:32 - 2014-07-24 22:32 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00148480 _____ () C:\TeamSpeak 3 Client\quazip.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00864768 _____ () C:\TeamSpeak 3 Client\platforms\qwindows.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00677376 _____ () C:\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2013-10-23 13:15 - 2014-08-22 08:54 - 00092104 _____ () C:\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2013-10-23 13:15 - 2014-08-22 08:54 - 00105416 _____ () C:\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00025600 _____ () C:\TeamSpeak 3 Client\imageformats\qgif.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00242688 _____ () C:\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00123904 _____ () C:\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 09171272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll
2015-02-28 21:51 - 2015-02-28 21:51 - 01618424 _____ () C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\RiotLauncher.dll
2015-01-27 07:30 - 2015-01-27 07:30 - 04774248 _____ () C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Spravca\AppData\Roaming:NT
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: HiPatchService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk => C:\Windows\pss\GIGABYTE OC_GURU.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk => C:\Windows\pss\SoftEther VPN Client Manager Startup.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Spravca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Bloody2 => "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
MSCONFIG\startupreg: ftweak_RAMRush => C:\Program Files (x86)\RAMRush\RAMRush.exe
MSCONFIG\startupreg: GameCompanion => "C:\Users\Spravca\AppData\Roaming\GameCompanion\GameCompanion.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: puush => C:\Program Files (x86)\puush\puush.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SkyDrive => "C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
MSCONFIG\startupreg: SoftEther VPN Client UI Helper => "C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe" /uihelp
MSCONFIG\startupreg: Spotify => "C:\Users\Spravca\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Spravca\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Tilt => C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
==================== Accounts: =============================
Administrator (S-1-5-21-144053010-3787646527-420655005-500 - Administrator - Disabled)
Aero (S-1-5-21-144053010-3787646527-420655005-1011 - Administrator - Enabled) => C:\Users\Aero
Guest (S-1-5-21-144053010-3787646527-420655005-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-144053010-3787646527-420655005-1007 - Limited - Enabled)
Spravca (S-1-5-21-144053010-3787646527-420655005-1000 - Administrator - Enabled) => C:\Users\Spravca
==================== Faulty Device Manager Devices =============
Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/05/2015 06:29:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (03/05/2015 06:21:16 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Skype Click to Call; Chyba = 0x80070422).
Error: (03/05/2015 06:21:14 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Skype Click to Call; Chyba = 0x80070422).
Error: (03/05/2015 08:08:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (03/04/2015 09:57:14 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed XSplit Broadcaster; Chyba = 0x80070422).
Error: (03/04/2015 09:57:08 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed XSplit Broadcaster; Chyba = 0x80070422).
Error: (03/04/2015 09:51:59 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\ProgramData\Package Cache\{fd97d1e2-368a-4cd9-af63-8eeff938044a}\adblockplusie-1.1.exe Cache\{fd97d1e2-368a-4cd9-af63-8eeff938044a}\adblockplusie-1.1.exe" /uninstall; Popis = Adblock Plus for IE; Chyba = 0x80070422).
Error: (03/04/2015 09:51:54 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Apple Software Update; Chyba = 0x80070422).
Error: (03/04/2015 09:51:53 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Apple Software Update; Chyba = 0x80070422).
Error: (03/04/2015 09:48:22 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\iKernel.exe -Embedding; Popis = Removed Stronghold Crusader; Chyba = 0x80070422).
System errors:
=============
Error: (03/05/2015 07:22:55 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:20:48 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:18:41 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:16:34 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:14:27 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:12:20 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:10:13 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:08:06 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:05:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:03:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-10-10 23:03:02.638
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ2C0.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:03:02.483
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ2C0.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:00:57.455
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ19B9.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:00:57.311
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ19B9.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:14.322
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQF2F7.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:14.171
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQF2F7.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:05.086
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:04.939
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:52:00.845
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:52:00.696
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 41%
Total physical RAM: 8189.43 MB
Available physical RAM: 4758.13 MB
Total Pagefile: 16377.05 MB
Available Pagefile: 12426.4 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (win7) (Fixed) (Total:465.66 GB) (Free:166.78 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C2CA54BC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== End Of Log ============================
spozoroval som
Administrator (S-1-5-21-144053010-3787646527-420655005-500 - Administrator - Disabled)
Aero (S-1-5-21-144053010-3787646527-420655005-1011 - Administrator - Enabled) => C:\Users\Aero
Guest (S-1-5-21-144053010-3787646527-420655005-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-144053010-3787646527-420655005-1007 - Limited - Enabled)
Spravca (S-1-5-21-144053010-3787646527-420655005-1000 - Administrator - Enabled) => C:\Users\Spravca
pamatam si ze som vytvaral iba Aero, ako je to mozne ze je tu tolko pouzivatelov? dakujem velmi pekne za pomoc
Ran by Spravca at 2015-03-05 19:23:45
Running from C:\Users\Spravca\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Tools for .Net 3.5 (x32 Version: 3.11.50727 - Microsoft Corporation) Hidden
.NET Obfuscation Checker 1 (HKLM\...\{84E871E3-7AC2-4DC8-B789-767A0386DC97}) (Version: 1.0.0.404 - Red Gate Software Ltd)
.NET Reflector Desktop (HKLM-x32\...\{3D083545-D87F-4053-81AB-50B212642EC3}) (Version: 8.2.0.42 - Red Gate Software Ltd)
µTorrent (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.222 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.5) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aktualizácie NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
AMX Mod X Installer 1.8.2 (HKLM-x32\...\AMX Mod X Installer) (Version: 1.8.2 - AMX Mod X Dev Team)
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.4 - Microsoft Corporation) Hidden
Application Insights Tools for Visual Studio Express 2013 for Web (x32 Version: 2.4 - Microsoft Corporation) Hidden
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AutoHotkey 1.1.14.03 (HKLM\...\AutoHotkey) (Version: 1.1.14.03 - Lexikos)
AutoIt v3.3.8.1 (HKLM-x32\...\AutoItv3) (Version: - AutoIt Team)
avast! Internet Security (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
AzureTools.Notifications.VwdExpress (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bloody5 (HKLM-x32\...\Bloody3) (Version: 14.08.0010 - Bloody)
Build Tools - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.25 - Piriform)
CodeBlocks (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
Color Symphony (HKLM-x32\...\Steam App 317410) (Version: - REMIMORY)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike Nexon: Zombies (HKLM-x32\...\Steam App 273110) (Version: - Nexon)
Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1531 - CyberLink Corp.)
DayZ Commander (HKLM-x32\...\{790412BB-B6CE-459B-9E17-7DA7C20FC98C}) (Version: 0.9.124 - Dotjosh Studios)
Dedicated Server (HKLM-x32\...\Steam App 5) (Version: - Valve)
Defraggler (HKLM\...\Defraggler) (Version: 2.12 - Piriform)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dropbox (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - )
Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
Etron USB3.0 Host Controller (x32 Version: 0.104 - Etron Technology) Hidden
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{5588D686-D23B-4C9D-BDFA-2A7875CD3722}) (Version: 1.63.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.63.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
HexEdit (HKLM-x32\...\{083EF76E-0760-4D7A-9508-0B88A3AF1889}) (Version: 4.0.0 - Expert Commercial Software Pty Ltd)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version: - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
IDA Pro Free v5.0 (HKLM-x32\...\IDA Pro Free_is1) (Version: - Hex-Rays SA)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java SE Development Kit 8 Update 20 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180200}) (Version: 8.0.200.26 - Oracle Corporation)
JetBrains ReSharper 8.1 (HKLM-x32\...\{AAF5434A-5006-48FA-95C2-A833D4E4ADDF}) (Version: 8.1.23.546 - JetBrains Inc)
KeePass Password Safe 1.28 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.28 - Dominik Reichl)
Killing Floor (HKLM-x32\...\Killing Floor_is1) (Version: Killing Floor V.1060 - ZM)
Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.236 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.236 - LogMeIn, Inc.) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{3C09DE13-867C-4289-9F95-4510BB3A5F57}) (Version: 11.4.1 - Red Giant Software)
Magic Bullet Suite 64-bit (Version: 11.4.1 - Red Giant Software) Hidden
Memory Profiler (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 for Web - ENU (HKLM-x32\...\{3e544097-53d1-4252-98a6-93cc12a6d487}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Premium 2013 with Update 4 (HKLM-x32\...\{fec93b6d-17f6-4952-96e1-2af5a525cf5d}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2013 (HKLM-x32\...\{cd09eea6-d0b3-4246-bb80-e047ceadf61f}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.)
MK HS TOOL (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\HS TOOL) (Version: - )
Mozilla Firefox 32.0.3 (x86 sk) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 sk)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MySQL Connector Net 6.8.4 (HKLM-x32\...\{04213F7B-361D-4E5A-B96F-D53009A854CA}) (Version: 6.8.4 - Oracle)
Need For Speed Rivals (HKLM-x32\...\{0657F865-25B6-4391-A3B5-9917CF291AB3}) (Version: 6.0 - Black Box)
Nero 8 (HKLM-x32\...\{E2C00C8C-3D0C-40DF-BC67-44321C9E1051}) (Version: 8.2.111 - Nero AG)
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version: - )
NNScript (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\NoNameScript) (Version: 4.22 - ESNation)
Node.js (HKLM\...\{D741B7D4-2BC4-43B4-B412-2A410621210B}) (Version: 0.10.28 - Joyent, Inc. and other Node contributors)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.1 - )
NVIDIA 3D Vision radič ovládača 344.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.75 - NVIDIA Corporation)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version: - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafický ovládač 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Oracle VM VirtualBox 4.2.18 (HKLM\...\{230C9C86-26A9-437F-8152-34D5F4C3F680}) (Version: 4.2.18 - Oracle Corporation)
osu! (HKLM-x32\...\{69dd0bcd-d4a6-4c5c-a9b8-2a7d58fa2fd4}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.4 - Power Software Ltd)
PowreShellIntegration.Notifications (x32 Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
ProjectPowder (x32 Version: 1.67.0000 - Outspark) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Python 2.7.5 (HKLM-x32\...\{DBDD570E-0952-475f-9453-AB88F3DD5659}) (Version: 2.7.5150 - Python Software Foundation)
Python 3.4.2 (64-bit) (HKLM\...\{CD723946-09C1-38D3-8542-732BA931E9EF}) (Version: 3.4.2150 - Python Software Foundation)
Python Tools Redirection Template (x32 Version: 1.1 - Microsoft Corporation) Hidden
Python Tools Redirection Template (x32 Version: 1.3 - Microsoft Corporation) Hidden
Qt (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Qt) (Version: 1.0.1 - Digia Plc)
Quake Live Mozilla Plugin (HKLM-x32\...\{FA66CFD7-0977-4C45-AACD-A8BB994B1A05}) (Version: 1.0.520 - id Software)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAMRush 1.0.6.917 (HKLM-x32\...\RAMRush_is1) (Version: - FTweak, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.2.45.0 - Razer Inc.)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Release Management for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
SciTE4AutoHotkey v3.0.06 (HKLM-x32\...\SciTE4AutoHotkey) (Version: v3.0.06 - fincs)
SciTE4AutoIt3 4/5/2013 (HKLM-x32\...\SciTE4AutoIt3) (Version: 4/5/2013 - Jos van der Zande)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version: - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Special Uninstaller version 3.0 (HKLM-x32\...\{46744C87-EE41-4BA3-A444-C2DECC145FC0}_is1) (Version: 3.0 - http://www.specialuninstaller.com/)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
Spotify (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steam Trading Card Beta Access (HKLM-x32\...\Steam App 202352) (Version: - )
SumRando (HKLM-x32\...\SumRandoSumRando) (Version: 1.0.0.164 - SumRando)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
Super Monday Night Combat (HKLM-x32\...\Steam App 104700) (Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Swords and Soldiers HD (HKLM-x32\...\Steam App 63500) (Version: - Ronimo Games)
System Requirements Lab (HKLM-x32\...\{8DCAB1D8-F20C-4733-9B5F-646DDFEB59C9}) (Version: 6.1.1.0 - Husdawg, LLC)
System Requirements Lab (HKLM-x32\...\{92F39985-0DA5-4CC4-869F-2A3048C182E6}) (Version: 4.5.13.0 - Husdawg, LLC)
TCPEye 1.0 (HKLM-x32\...\{998C9435-DAF8-4BDF-B9A5-F844B01D524C}_is1) (Version: - Free Software Relase)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
Telerik Control Panel (HKLM-x32\...\{105D7958-AA6D-4299-BDBD-E6AB2A43043E}) (Version: 13.3.1030.0 - Telerik AD)
Telerik JustCode Q3 2014 (HKLM-x32\...\{B4484969-7771-416D-AFAB-AA9FC328BFFE}) (Version: 14.3.1022.2 - Telerik AD)
Telerik JustDecompile Q1 2015 (HKLM-x32\...\{043079C4-E7ED-4D19-9CB5-DB44D5C239B6}) (Version: 15.1.217.0 - Telerik AD)
Telerik UI for ASP.NET AJAX Q3 2014 SP1 (HKLM-x32\...\{A68043EE-B336-445F-9098-261764554920}) (Version: 14.3.1209.0 - Telerik AD)
Telerik UI for WPF Q3 2014 SP1 (HKLM-x32\...\{3244B48E-DD39-411D-9C6A-1444B891D523}) (Version: 14.3.1202.0 - Telerik AD)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version: - Ubisoft Montreal)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - Runic Games)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
Unity Web Player (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unity3d Obfuscator v 1.3.18 (39) (HKLM-x32\...\Unity3d Obfuscator_is1) (Version: - Tech-Next Software Ltd.)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2013 Update 4 (KB2829760) (HKLM-x32\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
VS Update core components (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR archivátor (HKLM\...\WinRAR archiver) (Version: - )
WinSCP 5.1.2 (HKLM-x32\...\winscp3_is1) (Version: 5.1.2 - Martin Prikryl)
Workflow Manager Client 1.0 (Version: 2.0.40131.0 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.40326.0 - Microsoft Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Xilisoft MP4 Converter (HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Xilisoft MP4 Converter) (Version: 7.7.2.20130122 - Xilisoft)
YoloMouse (HKLM\...\{A8B7132E-F8F3-4518-8781-019DBCB963E5}) (Version: 0.5.2.0 - HaPpY)
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-144053010-3787646527-420655005-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Spravca\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {17515E06-8DFC-4038-AA22-DB3AA8C64820} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628 => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07] (Google Inc.)
Task: {34CE9AC6-E23B-45E0-9E2A-CB4CF26EF3F8} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {38A41977-FFD0-43A4-8DA8-F59172E5EC5F} - System32\Tasks\AdobeAAMUpdater-1.0-Spravca-PC-Spravca => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {3C53DBCA-DC5E-4AE4-83B2-FAC041E3F53D} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Task: {3C9ECB89-DE71-4199-9110-0F33CFBA8F25} - System32\Tasks\{853D6FBE-2E80-44D3-9352-6153EDE6D088} => pcalua.exe -a C:\Users\Spravca\Downloads\SciTE4AHK3006_Install.exe -d C:\Users\Spravca\Downloads
Task: {49450446-8C7D-4372-B53F-13220A2A7505} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA => C:\Users\Spravca\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-22] (Facebook Inc.)
Task: {5C10ACA1-27BE-4C32-B474-A7005CAC9263} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core => C:\Users\Spravca\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-22] (Facebook Inc.)
Task: {6C0A64F3-06A6-45C4-AE76-231A53AD775B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20] (Google Inc.)
Task: {7D98335D-FFB1-4112-B62D-685F4E0770CC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-25] (Adobe Systems Incorporated)
Task: {87F20410-5FE5-42D6-8DA7-EACE1476D609} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {8D67ACF4-41B8-4F65-A9C4-0B230D1A4276} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-11-23] (Piriform Ltd)
Task: {A406AFE8-7395-442C-83D2-C6DD290FAF7E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe [2014-04-07] (Google Inc.)
Task: {AA3B7C8D-0F0E-4622-BE59-E454B72E9BA3} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-24] (AVAST Software)
Task: {B79E90F8-6FA8-4977-B1AB-5C023E24C23B} - System32\Tasks\{69CD17D5-3006-4CDD-BCAA-132EA3ACB712} => pcalua.exe -a C:\Users\Spravca\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=cvs <==== ATTENTION
Task: {DB4BF08E-B838-413F-8704-E8614EDD65F6} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [2013-01-02] ()
Task: {E6ABA8AE-33E9-432B-8102-65B6D9C803FE} - System32\Tasks\Telerik Control Panel Notifier Spravca-PC_Spravca => TelerikControlPanelNotifier.exe
Task: {ED3B0A3A-3A0D-45E4-B8C5-32D29EF96E9B} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {EE814832-429E-4C23-A6C1-25F33CB3244C} - System32\Tasks\gg_uac_daemon_Spravca => C:\Program Files (x86)\Garena Plus\ggdllhost.exe [2014-06-11] ()
Task: {F5434074-5ABC-427A-82D4-D2693A711516} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-20] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2012-11-13 15:14 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-11-11 14:22 - 2014-12-22 21:42 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2012-01-10 14:41 - 2013-12-28 17:21 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-01-21 16:54 - 2015-01-27 07:13 - 01294336 _____ () C:\GAMES\League of Legends\RADS\system\rads_user_kernel.exe
2015-02-28 21:51 - 2015-02-28 21:51 - 02445304 _____ () C:\GAMES\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.238\deploy\LoLLauncher.exe
2015-02-28 21:51 - 2015-02-28 21:51 - 03952120 _____ () C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\LoLPatcher.exe
2015-01-27 07:47 - 2015-01-27 07:47 - 00074752 _____ () C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\LolClient.exe
2014-07-24 22:32 - 2014-07-24 22:32 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2015-03-05 12:25 - 2015-03-05 12:25 - 02917376 _____ () C:\Program Files\AVAST Software\Avast\defs\15030500\algo.dll
2014-09-25 13:02 - 2014-09-25 13:02 - 00081056 _____ () C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\LoggingPlatform.DLL
2015-02-10 22:00 - 2015-02-10 22:00 - 00750080 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-05 18:29 - 2015-03-05 18:29 - 00043008 _____ () c:\users\spravca\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcokd2o.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00047616 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00865280 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00200704 _____ () C:\Users\Spravca\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-07-24 22:32 - 2014-07-24 22:32 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00148480 _____ () C:\TeamSpeak 3 Client\quazip.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00864768 _____ () C:\TeamSpeak 3 Client\platforms\qwindows.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00677376 _____ () C:\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2013-10-23 13:15 - 2014-08-22 08:54 - 00092104 _____ () C:\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2013-10-23 13:15 - 2014-08-22 08:54 - 00105416 _____ () C:\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00025600 _____ () C:\TeamSpeak 3 Client\imageformats\qgif.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00242688 _____ () C:\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-06-24 11:47 - 2014-06-24 11:47 - 00123904 _____ () C:\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-19 21:30 - 2015-02-17 23:44 - 09171272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll
2015-02-28 21:51 - 2015-02-28 21:51 - 01618424 _____ () C:\GAMES\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.22\deploy\RiotLauncher.dll
2015-01-27 07:30 - 2015-01-27 07:30 - 04774248 _____ () C:\GAMES\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.131\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Spravca\AppData\Roaming:NT
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Spravca\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: HiPatchService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk => C:\Windows\pss\GIGABYTE OC_GURU.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk => C:\Windows\pss\SoftEther VPN Client Manager Startup.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Spravca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Bloody2 => "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
MSCONFIG\startupreg: ftweak_RAMRush => C:\Program Files (x86)\RAMRush\RAMRush.exe
MSCONFIG\startupreg: GameCompanion => "C:\Users\Spravca\AppData\Roaming\GameCompanion\GameCompanion.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: puush => C:\Program Files (x86)\puush\puush.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: SandboxieControl => "C:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SkyDrive => "C:\Users\Spravca\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
MSCONFIG\startupreg: SoftEther VPN Client UI Helper => "C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe" /uihelp
MSCONFIG\startupreg: Spotify => "C:\Users\Spravca\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Spravca\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Tilt => C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
==================== Accounts: =============================
Administrator (S-1-5-21-144053010-3787646527-420655005-500 - Administrator - Disabled)
Aero (S-1-5-21-144053010-3787646527-420655005-1011 - Administrator - Enabled) => C:\Users\Aero
Guest (S-1-5-21-144053010-3787646527-420655005-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-144053010-3787646527-420655005-1007 - Limited - Enabled)
Spravca (S-1-5-21-144053010-3787646527-420655005-1000 - Administrator - Enabled) => C:\Users\Spravca
==================== Faulty Device Manager Devices =============
Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/05/2015 06:29:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (03/05/2015 06:21:16 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Skype Click to Call; Chyba = 0x80070422).
Error: (03/05/2015 06:21:14 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Skype Click to Call; Chyba = 0x80070422).
Error: (03/05/2015 08:08:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (03/04/2015 09:57:14 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed XSplit Broadcaster; Chyba = 0x80070422).
Error: (03/04/2015 09:57:08 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed XSplit Broadcaster; Chyba = 0x80070422).
Error: (03/04/2015 09:51:59 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\ProgramData\Package Cache\{fd97d1e2-368a-4cd9-af63-8eeff938044a}\adblockplusie-1.1.exe Cache\{fd97d1e2-368a-4cd9-af63-8eeff938044a}\adblockplusie-1.1.exe" /uninstall; Popis = Adblock Plus for IE; Chyba = 0x80070422).
Error: (03/04/2015 09:51:54 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Apple Software Update; Chyba = 0x80070422).
Error: (03/04/2015 09:51:53 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\Windows\system32\msiexec.exe /V; Popis = Removed Apple Software Update; Chyba = 0x80070422).
Error: (03/04/2015 09:48:22 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\iKernel.exe -Embedding; Popis = Removed Stronghold Crusader; Chyba = 0x80070422).
System errors:
=============
Error: (03/05/2015 07:22:55 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:20:48 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:18:41 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:16:34 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:14:27 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:12:20 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:10:13 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:08:06 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:05:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (03/05/2015 07:03:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-10-10 23:03:02.638
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ2C0.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:03:02.483
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ2C0.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:00:57.455
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ19B9.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 23:00:57.311
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQ19B9.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:14.322
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQF2F7.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:14.171
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\AppData\Local\Temp\PHQF2F7.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:05.086
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:54:04.939
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:52:00.845
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-10-10 22:52:00.696
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 41%
Total physical RAM: 8189.43 MB
Available physical RAM: 4758.13 MB
Total Pagefile: 16377.05 MB
Available Pagefile: 12426.4 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (win7) (Fixed) (Total:465.66 GB) (Free:166.78 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C2CA54BC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== End Of Log ============================

Administrator (S-1-5-21-144053010-3787646527-420655005-500 - Administrator - Disabled)
Aero (S-1-5-21-144053010-3787646527-420655005-1011 - Administrator - Enabled) => C:\Users\Aero
Guest (S-1-5-21-144053010-3787646527-420655005-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-144053010-3787646527-420655005-1007 - Limited - Enabled)
Spravca (S-1-5-21-144053010-3787646527-420655005-1000 - Administrator - Enabled) => C:\Users\Spravca
pamatam si ze som vytvaral iba Aero, ako je to mozne ze je tu tolko pouzivatelov? dakujem velmi pekne za pomoc
Re: Preventivka

- Upozorneni: tento sken zabere od 30 minut po nekolik hodin
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 5. 3. 2015
Scan Time: 23:47:57
Logfile: log.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.03.05.03
Rootkit Database: v2015.02.25.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Spravca
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1367815
Time Elapsed: 5 hr, 54 min, 32 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 2
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|CustomizeSearch, http://istart.webssearches.com/web/?typ ... earchTerms}, Good: (www.google.com), Bad: (http://istart.webssearches.com/web/?typ ... earchTerms}),,[7b2e10125a301a1cd4b44c864abb936d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://istart.webssearches.com/web/?typ ... earchTerms}, Good: (www.google.com), Bad: (http://istart.webssearches.com/web/?typ ... earchTerms}),,[18913fe38901181e5e2bcb0726dff709]
Folders: 0
(No malicious items detected)
Files: 40
Riskware.Injector.DC, C:\Users\Spravca\Documents\Visual Studio 2013\Projects\Ynsha2\Release\hehe.exe, , [a7023fe399f1b97df06a5da5a35fb24e],
HackTool.Agent.H, C:\Users\Spravca\Documents\Visual Studio 2013\Projects\Ynsha2\Release\Winject.exe, , [b0f90220028874c263945744bf43f709],
Hacktool.CheatEngine, C:\Users\Spravca\Downloads\nfs-rivals-v1.0-trainer-plus6.zip, , [1099a37f216901357d11ca7053adff01],
Riskware.Injector.DC, C:\Users\Spravca\Downloads\Extreme Injector v3.3 - by master131_mpgh.net.rar, , [604956cc246665d1e377a0620df516ea],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_.zip, , [37721210018968ce813b0fa2b44c26da],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\crackme2_[www.unknowncheats.me]_.rar, , [e7c251d11872a0966ea5dbe570900ef2],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial25.tutorial\tiny.nfo.viewer.exe, , [3c6d6ab8b6d43ef838656753ad582ed2],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial27.tutorial\tiny.nfo.viewer.exe, , [9514889a5238ae882b7236841ee70bf5],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial28.tutorial\tiny.nfo.viewer.exe, , [a50429f9b8d20e285f3e4674fc09bf41],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial29.tutorial\tiny.nfo.viewer.exe, , [4168e73bf4965fd7930a41791fe63cc4],
Trojan.Dropper, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial30.tutorial\files\loaderPhotocopierPro2.11.exe, , [01a874ae73177cbaebaef78428d8c937],
VirTool.Topo, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial32.tutorial\files\topo12_fixed.rar, , [9217968c17730a2c9ffd1ee852ae27d9],
Trojan.Dropper, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial33.tutorial\files\SpySweeperLoader.exe, , [6049c959e8a288aea5f44e2de917b24e],
PUP.Hacktool.Patcher, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial35.tutorial\files\Part35.Patcher.exe, , [f8b1c1614149a294c93915f138c8f50b],
Trojan.Clicker, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial10.tutorial\files\cconvert.rar, , [7b2ee939d9b1b97dec207730a55bea16],
Backdoor.Agent, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial20.tutorial\files\UnPackMe_eXPressor1.3.0.1Pk.exe, , [2287e83a06840b2b543bd69e34cc03fd],
Worm.Brontok, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial20.tutorial\files\UnPackMe_MEW1.1.exe, , [5f4aae74ddadcb6b3451773f23e2659b],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial21.tutorial\tiny.nfo.viewer.exe, , [beeb9092a3e769cd6736b505e91cbf41],
RiskWare.Tool.CK, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial21.tutorial\files\UnPackMe_FSG2.0.exe, , [46639f83ec9ebc7a7df7413aa9577e82],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial22.tutorial\tiny.nfo.viewer.exe, , [b4f52ef484068da9fca1308aa065b64a],
PUP.Hacktool.Patcher, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial37.tutorial\files\UnpackMe#5.exe, , [307968babcce043217eb858141bf29d7],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial24.tutorial\tiny.nfo.viewer.exe, , [1594919129613006c9d402b8b05547b9],
Riskware.Injector.DC, C:\Users\Spravca\Downloads\Extreme Injector v3.3 - by master131_mpgh.net\Extreme Injector v3.exe, , [1396cf53f6940d29194132d0649e669a],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_\moCrypt.exe, , [515829f9eb9f92a4fbc18031ac54ed13],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_\ppgsxuckjwsfyrngboweyopcxcnlrcld.exe, , [8d1c3ce648420b2b9e1e624f01ffad53],
Flooder.SpamBot, C:\GAMES\heks\Spam-Bot (Vista & 7).dll, , [1a8f7da54e3ca0966a92eeebd52b20e0],
Flooder.SpamBot, C:\GAMES\heks\Spam-Bot (XP).dll, , [0d9ca37faae086b0d4283b9e956bc53b],
Flooder.SpamBot, C:\GAMES\heks\Switch-Bot (Vista & 7).dll, , [9316dc463c4e8bab8e6eeaefdf21ce32],
Flooder.SpamBot, C:\GAMES\heks\Switch-Bot (XP).dll, , [7f2a3de5f694c3738d6f667350b0728e],
Flooder.SpamBot, C:\GAMES\heks\Tools einstellen (Vista & 7).dll, , [179277abf694bd79728acd0cf30df709],
Flooder.SpamBot, C:\GAMES\heks\Tools einstellen (XP).dll, , [c2e7aa78deac0e288676984118e8629e],
Flooder.SpamBot, C:\GAMES\heks\PickUp-Bot (Vista & 7).dll, , [d3d6869ce0aa1e18ee0e7a5f867a50b0],
Flooder.SpamBot, C:\GAMES\heks\PickUp-Bot (XP).dll, , [6f3a32f06228dd59d12b16c3ea1632ce],
Flooder.SpamBot, C:\GAMES\heks\ProDamage++\PickUp-Bot (Vista & 7).dll, , [efbad052a0ea201658a4edecb94738c8],
Flooder.SpamBot, C:\GAMES\heks\ProDamage++\Switch-Bot (Vista & 7).dll, , [eebb9e84bfcbb581cc3029b03fc10cf4],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\nfs14.3dm.dll, , [a50491917b0fa096c6810e5703fe8f71],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\NFS14.exe, , [decbaf7342489b9bf185491a04fd49b7],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\NFS14_x86.exe, , [4b5e8e94a1e9ec4a85f1cf9427da6799],
PUP.Optional.WebsSearches.A, C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.webssearches.com_0.localstorage-journal, , [8920bd654a40d1658fad9c0e3ac9718f],
PUP.Optional.WebsSearches.A, C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.webssearches.com_0.localstorage-journal, , [9f0a41e1abdf90a6fa4213970bf86d93],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 5. 3. 2015
Scan Time: 23:47:57
Logfile: log.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.03.05.03
Rootkit Database: v2015.02.25.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Spravca
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1367815
Time Elapsed: 5 hr, 54 min, 32 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 2
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|CustomizeSearch, http://istart.webssearches.com/web/?typ ... earchTerms}, Good: (www.google.com), Bad: (http://istart.webssearches.com/web/?typ ... earchTerms}),,[7b2e10125a301a1cd4b44c864abb936d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://istart.webssearches.com/web/?typ ... earchTerms}, Good: (www.google.com), Bad: (http://istart.webssearches.com/web/?typ ... earchTerms}),,[18913fe38901181e5e2bcb0726dff709]
Folders: 0
(No malicious items detected)
Files: 40
Riskware.Injector.DC, C:\Users\Spravca\Documents\Visual Studio 2013\Projects\Ynsha2\Release\hehe.exe, , [a7023fe399f1b97df06a5da5a35fb24e],
HackTool.Agent.H, C:\Users\Spravca\Documents\Visual Studio 2013\Projects\Ynsha2\Release\Winject.exe, , [b0f90220028874c263945744bf43f709],
Hacktool.CheatEngine, C:\Users\Spravca\Downloads\nfs-rivals-v1.0-trainer-plus6.zip, , [1099a37f216901357d11ca7053adff01],
Riskware.Injector.DC, C:\Users\Spravca\Downloads\Extreme Injector v3.3 - by master131_mpgh.net.rar, , [604956cc246665d1e377a0620df516ea],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_.zip, , [37721210018968ce813b0fa2b44c26da],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\crackme2_[www.unknowncheats.me]_.rar, , [e7c251d11872a0966ea5dbe570900ef2],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial25.tutorial\tiny.nfo.viewer.exe, , [3c6d6ab8b6d43ef838656753ad582ed2],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial27.tutorial\tiny.nfo.viewer.exe, , [9514889a5238ae882b7236841ee70bf5],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial28.tutorial\tiny.nfo.viewer.exe, , [a50429f9b8d20e285f3e4674fc09bf41],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial29.tutorial\tiny.nfo.viewer.exe, , [4168e73bf4965fd7930a41791fe63cc4],
Trojan.Dropper, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial30.tutorial\files\loaderPhotocopierPro2.11.exe, , [01a874ae73177cbaebaef78428d8c937],
VirTool.Topo, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial32.tutorial\files\topo12_fixed.rar, , [9217968c17730a2c9ffd1ee852ae27d9],
Trojan.Dropper, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial33.tutorial\files\SpySweeperLoader.exe, , [6049c959e8a288aea5f44e2de917b24e],
PUP.Hacktool.Patcher, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial35.tutorial\files\Part35.Patcher.exe, , [f8b1c1614149a294c93915f138c8f50b],
Trojan.Clicker, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial10.tutorial\files\cconvert.rar, , [7b2ee939d9b1b97dec207730a55bea16],
Backdoor.Agent, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial20.tutorial\files\UnPackMe_eXPressor1.3.0.1Pk.exe, , [2287e83a06840b2b543bd69e34cc03fd],
Worm.Brontok, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial20.tutorial\files\UnPackMe_MEW1.1.exe, , [5f4aae74ddadcb6b3451773f23e2659b],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial21.tutorial\tiny.nfo.viewer.exe, , [beeb9092a3e769cd6736b505e91cbf41],
RiskWare.Tool.CK, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial21.tutorial\files\UnPackMe_FSG2.0.exe, , [46639f83ec9ebc7a7df7413aa9577e82],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial22.tutorial\tiny.nfo.viewer.exe, , [b4f52ef484068da9fca1308aa065b64a],
PUP.Hacktool.Patcher, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial37.tutorial\files\UnpackMe#5.exe, , [307968babcce043217eb858141bf29d7],
Trojan.KillAV, C:\Users\Spravca\Downloads\odbg110\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorials\snd-reversingwithlena-tutorial24.tutorial\tiny.nfo.viewer.exe, , [1594919129613006c9d402b8b05547b9],
Riskware.Injector.DC, C:\Users\Spravca\Downloads\Extreme Injector v3.3 - by master131_mpgh.net\Extreme Injector v3.exe, , [1396cf53f6940d29194132d0649e669a],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_\moCrypt.exe, , [515829f9eb9f92a4fbc18031ac54ed13],
Backdoor.MSIL.PGen, C:\Users\Spravca\Downloads\mosHack16_[www.unknowncheats.me]_\ppgsxuckjwsfyrngboweyopcxcnlrcld.exe, , [8d1c3ce648420b2b9e1e624f01ffad53],
Flooder.SpamBot, C:\GAMES\heks\Spam-Bot (Vista & 7).dll, , [1a8f7da54e3ca0966a92eeebd52b20e0],
Flooder.SpamBot, C:\GAMES\heks\Spam-Bot (XP).dll, , [0d9ca37faae086b0d4283b9e956bc53b],
Flooder.SpamBot, C:\GAMES\heks\Switch-Bot (Vista & 7).dll, , [9316dc463c4e8bab8e6eeaefdf21ce32],
Flooder.SpamBot, C:\GAMES\heks\Switch-Bot (XP).dll, , [7f2a3de5f694c3738d6f667350b0728e],
Flooder.SpamBot, C:\GAMES\heks\Tools einstellen (Vista & 7).dll, , [179277abf694bd79728acd0cf30df709],
Flooder.SpamBot, C:\GAMES\heks\Tools einstellen (XP).dll, , [c2e7aa78deac0e288676984118e8629e],
Flooder.SpamBot, C:\GAMES\heks\PickUp-Bot (Vista & 7).dll, , [d3d6869ce0aa1e18ee0e7a5f867a50b0],
Flooder.SpamBot, C:\GAMES\heks\PickUp-Bot (XP).dll, , [6f3a32f06228dd59d12b16c3ea1632ce],
Flooder.SpamBot, C:\GAMES\heks\ProDamage++\PickUp-Bot (Vista & 7).dll, , [efbad052a0ea201658a4edecb94738c8],
Flooder.SpamBot, C:\GAMES\heks\ProDamage++\Switch-Bot (Vista & 7).dll, , [eebb9e84bfcbb581cc3029b03fc10cf4],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\nfs14.3dm.dll, , [a50491917b0fa096c6810e5703fe8f71],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\NFS14.exe, , [decbaf7342489b9bf185491a04fd49b7],
Trojan.Agent, C:\GAMES\Need For Speed Rivals\NFS14_x86.exe, , [4b5e8e94a1e9ec4a85f1cf9427da6799],
PUP.Optional.WebsSearches.A, C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.webssearches.com_0.localstorage-journal, , [8920bd654a40d1658fad9c0e3ac9718f],
PUP.Optional.WebsSearches.A, C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.webssearches.com_0.localstorage-journal, , [9f0a41e1abdf90a6fa4213970bf86d93],
Physical Sectors: 0
(No malicious items detected)
(end)
Re: Preventivka


- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation) HKLM-x32\...\Run: [DEXTIFICATOR] => c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [10240 2015-03-01] () HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [uTorrent] => C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.) AppInit_DLLs-x32: => "" File Not Found HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File Handler: WSISAllmytubechrome - No CLSID Value FF DefaultSearchEngine: Bing FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Bing FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q= FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File FF Extension: No Name - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com [Not Found] CHR Extension: (µBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-02-06] S4 FileZilla Server; "C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe" [X] S3 1PBLikesItAnal; C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [6144 2006-04-18] () [File not signed] S4 ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys [X] S4 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S4 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [X] S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X] S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X] S3 PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys [X] S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X] 2015-03-05 18:21 - 2015-03-05 18:25 - 00000000 ____D () C:\AdwCleaner 2015-03-05 18:20 - 2015-03-05 18:20 - 02126848 _____ () C:\Users\Spravca\Downloads\AdwCleaner.exe 2015-03-04 21:04 - 2015-03-04 21:04 - 01222144 _____ () C:\Users\Spravca\Downloads\RSITx64.exe 2015-03-04 21:04 - 2015-03-04 21:04 - 00000000 ____D () C:\rsit 2014-01-29 00:47 - 2014-01-29 00:47 - 0004107 _____ () C:\ProgramData\jfumnmdv.qtf 2014-12-26 01:05 - 2014-12-26 01:05 - 0000016 _____ () C:\ProgramData\mntemp Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe Folder: C:\crckingh Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-03-2015 01
Ran by Spravca at 2015-03-07 07:12:53 Run:1
Running from C:\Users\Spravca\Downloads
Loaded Profiles: Spravca (Available profiles: Spravca & Aero)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [DEXTIFICATOR] => c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [10240 2015-03-01] ()
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [uTorrent] => C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.)
AppInit_DLLs-x32: => "" File Not Found
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File
Handler: WSISAllmytubechrome - No CLSID Value
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Extension: No Name - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com [Not Found]
CHR Extension: (µBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-02-06]
S4 FileZilla Server; "C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe" [X]
S3 1PBLikesItAnal; C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [6144 2006-04-18] () [File not signed]
S4 ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys [X]
S4 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S3 PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
2015-03-05 18:21 - 2015-03-05 18:25 - 00000000 ____D () C:\AdwCleaner
2015-03-05 18:20 - 2015-03-05 18:20 - 02126848 _____ () C:\Users\Spravca\Downloads\AdwCleaner.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 01222144 _____ () C:\Users\Spravca\Downloads\RSITx64.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 00000000 ____D () C:\rsit
2014-01-29 00:47 - 2014-01-29 00:47 - 0004107 _____ () C:\ProgramData\jfumnmdv.qtf
2014-12-26 01:05 - 2014-12-26 01:05 - 0000016 _____ () C:\ProgramData\mntemp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Folder: C:\crckingh
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DEXTIFICATOR => value deleted successfully.
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value deleted successfully.
"AppInit_DLLs-x32: => "" File Not Found" => Value Data not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} => Key not found.
"HKCR\PROTOCOLS\Handler\WSISAllmytubechrome" => Key deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com not found.
C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm => Moved successfully.
FileZilla Server => Service deleted successfully.
1PBLikesItAnal => Service deleted successfully.
ALSysIO => Service deleted successfully.
cpuz136 => Service deleted successfully.
EagleX64 => Service deleted successfully.
FairplayKD => Service deleted successfully.
GGSAFERDriver => Service deleted successfully.
LMIInfo => Service deleted successfully.
PBDOWNFORCE_TEST_SERVICE => Service deleted successfully.
X6va015 => Service deleted successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Spravca\Downloads\AdwCleaner.exe => Moved successfully.
C:\Users\Spravca\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\ProgramData\jfumnmdv.qtf => Moved successfully.
C:\ProgramData\mntemp => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => Moved successfully.
========================= Folder: C:\crckingh ========================
2015-03-04 08:36 - 2015-03-04 08:36 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack
2015-03-04 08:36 - 2014-08-30 23:52 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\LoLScraper
2015-03-04 08:36 - 2014-08-09 20:54 - 0503808 _____ () C:\crckingh\Conceitful's LoLCrack Pack\LoLScraper\League of Legends Scraper.exe
2015-03-04 08:36 - 2015-03-04 09:04 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA
2015-03-04 08:36 - 2015-03-04 08:49 - 0000000 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Fav.ini
2015-03-04 08:36 - 2012-07-17 08:54 - 0003510 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\GlobalKeys.ini
2015-03-04 08:36 - 2015-03-04 09:04 - 0000005 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\History.ini
2015-03-04 08:36 - 2011-12-02 16:01 - 0160682 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ImageData.dat
2015-03-04 08:36 - 2011-04-09 14:11 - 6324974 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ipfilter.dat
2015-03-04 08:36 - 2009-07-23 17:32 - 1122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\libeay32.dll
2015-03-04 08:36 - 2015-03-04 09:04 - 8568098 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\MyList.ini
2015-03-04 08:36 - 2012-07-19 16:17 - 5556224 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Sentry_MBA.exe
2015-03-04 08:36 - 2015-03-04 09:04 - 0005107 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Settings.ini
2015-03-04 08:36 - 2015-03-04 09:04 - 0000074 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Sites.ini
2015-03-04 08:36 - 2009-07-23 17:32 - 0274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ssleay32.dll
2015-03-04 08:36 - 2009-06-30 03:56 - 0750080 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdll.dll
2015-03-04 08:36 - 2015-03-04 09:04 - 0000081 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\WordlistsLoaded.ini
2015-03-04 08:36 - 2014-06-24 00:54 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\SnapShots
2015-03-04 08:36 - 2015-03-04 09:04 - 0004269 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\SnapShots\lq.na.lol.riotgames.com.ini
2015-03-04 08:36 - 2011-04-19 12:15 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata
2015-03-04 08:36 - 2011-11-22 18:36 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.DangAmbigs
2015-03-04 08:36 - 2011-11-22 06:01 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.freq-dawg
2015-03-04 08:36 - 2011-11-29 04:50 - 0304122 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.inttemp
2015-03-04 08:36 - 2011-11-29 04:50 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.normproto
2015-03-04 08:36 - 2011-11-29 04:50 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.pffmtable
2015-03-04 08:36 - 2011-11-29 04:50 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.unicharset
2015-03-04 08:36 - 2011-11-25 03:23 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.user-words
2015-03-04 08:36 - 2011-11-22 06:01 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.word-dawg
2015-03-04 08:36 - 2011-11-30 05:44 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.DangAmbigs
2015-03-04 08:36 - 2011-11-30 05:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.freq-dawg
2015-03-04 08:36 - 2011-11-30 19:36 - 0544890 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.inttemp
2015-03-04 08:36 - 2011-11-30 19:36 - 0004847 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.normproto
2015-03-04 08:36 - 2011-11-30 19:36 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.pffmtable
2015-03-04 08:36 - 2011-11-30 19:36 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.unicharset
2015-03-04 08:36 - 2011-11-30 06:12 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.user-words
2015-03-04 08:36 - 2011-11-30 05:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.word-dawg
2015-03-04 08:36 - 2011-12-19 16:44 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.DangAmbigs
2015-03-04 08:36 - 2011-12-19 16:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.freq-dawg
2015-03-04 08:36 - 2011-12-19 16:44 - 0356734 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.inttemp
2015-03-04 08:36 - 2011-12-19 16:44 - 0008999 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.normproto
2015-03-04 08:36 - 2011-12-19 16:44 - 0000310 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.pffmtable
2015-03-04 08:36 - 2011-12-19 16:44 - 0000322 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.unicharset
2015-03-04 08:36 - 2011-12-19 16:44 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.user-words
2015-03-04 08:36 - 2011-12-19 16:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.word-dawg
2015-03-04 08:36 - 2011-12-20 07:05 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.DangAmbigs
2015-03-04 08:36 - 2011-12-20 07:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.freq-dawg
2015-03-04 08:36 - 2011-12-21 05:47 - 0206538 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.inttemp
2015-03-04 08:36 - 2011-12-21 05:47 - 0001625 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.normproto
2015-03-04 08:36 - 2011-12-21 05:47 - 0000075 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.pffmtable
2015-03-04 08:36 - 2011-12-21 05:47 - 0000126 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.unicharset
2015-03-04 08:36 - 2011-12-20 07:05 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.user-words
2015-03-04 08:36 - 2011-12-20 07:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.word-dawg
2015-03-04 08:36 - 2011-12-22 10:30 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.DangAmbigs
2015-03-04 08:36 - 2011-12-22 10:30 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.freq-dawg
2015-03-04 08:36 - 2011-12-22 10:41 - 0254038 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.inttemp
2015-03-04 08:36 - 2011-12-22 10:41 - 0003302 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.normproto
2015-03-04 08:36 - 2011-12-22 10:41 - 0000140 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.pffmtable
2015-03-04 08:36 - 2011-12-22 10:41 - 0000249 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.unicharset
2015-03-04 08:36 - 2011-12-22 10:30 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.user-words
2015-03-04 08:36 - 2011-12-22 10:30 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.word-dawg
2015-03-04 08:36 - 2011-12-26 06:31 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.DangAmbigs
2015-03-04 08:36 - 2011-12-26 06:31 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.freq-dawg
2015-03-04 08:36 - 2011-12-26 06:35 - 0495670 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.inttemp
2015-03-04 08:36 - 2011-12-26 06:35 - 0009072 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.normproto
2015-03-04 08:36 - 2011-12-26 06:35 - 0000383 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.pffmtable
2015-03-04 08:36 - 2011-12-26 06:35 - 0000691 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.unicharset
2015-03-04 08:36 - 2011-12-26 06:31 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.user-words
2015-03-04 08:36 - 2011-12-26 06:31 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.word-dawg
2015-03-04 08:36 - 2011-12-17 08:33 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.DangAmbigs
2015-03-04 08:36 - 2011-12-17 08:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.freq-dawg
2015-03-04 08:36 - 2011-12-17 08:33 - 0399162 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.inttemp
2015-03-04 08:36 - 2011-12-17 08:33 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.normproto
2015-03-04 08:36 - 2011-12-17 08:33 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.pffmtable
2015-03-04 08:36 - 2011-12-17 08:33 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.unicharset
2015-03-04 08:36 - 2011-12-17 08:33 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.user-words
2015-03-04 08:36 - 2011-12-17 08:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.word-dawg
2015-03-04 08:36 - 2012-01-01 04:05 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.DangAmbigs
2015-03-04 08:36 - 2012-01-01 04:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.freq-dawg
2015-03-04 08:36 - 2012-01-02 06:03 - 0308346 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.inttemp
2015-03-04 08:36 - 2012-01-02 06:03 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.normproto
2015-03-04 08:36 - 2012-01-02 06:03 - 0000186 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.pffmtable
2015-03-04 08:36 - 2012-01-02 06:03 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.unicharset
2015-03-04 08:36 - 2012-01-01 04:05 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.user-words
2015-03-04 08:36 - 2012-01-01 04:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.word-dawg
2015-03-04 08:36 - 2011-12-30 22:38 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.DangAmbigs
2015-03-04 08:36 - 2011-12-30 22:38 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.freq-dawg
2015-03-04 08:36 - 2011-12-30 22:38 - 0363070 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.inttemp
2015-03-04 08:36 - 2011-12-30 22:38 - 0007622 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.normproto
2015-03-04 08:36 - 2011-12-30 22:38 - 0000314 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.pffmtable
2015-03-04 08:36 - 2011-12-30 22:38 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.unicharset
2015-03-04 08:36 - 2011-12-30 22:38 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.user-words
2015-03-04 08:36 - 2011-12-30 22:38 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.word-dawg
2015-03-04 08:36 - 2012-01-13 00:10 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.DangAmbigs
2015-03-04 08:36 - 2012-01-13 00:10 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.freq-dawg
2015-03-04 08:36 - 2012-01-13 10:00 - 0374114 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.inttemp
2015-03-04 08:36 - 2012-01-13 10:00 - 0005681 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.normproto
2015-03-04 08:36 - 2012-01-13 10:00 - 0000228 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.pffmtable
2015-03-04 08:36 - 2012-01-13 10:00 - 0000384 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.unicharset
2015-03-04 08:36 - 2012-01-13 00:10 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.user-words
2015-03-04 08:36 - 2012-01-13 00:10 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.word-dawg
2015-03-04 08:36 - 2012-01-20 23:32 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.DangAmbigs
2015-03-04 08:36 - 2012-01-20 23:32 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.freq-dawg
2015-03-04 08:36 - 2012-01-21 22:39 - 0171744 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.inttemp
2015-03-04 08:36 - 2012-01-21 22:39 - 0003537 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.normproto
2015-03-04 08:36 - 2012-01-21 22:39 - 0000136 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.pffmtable
2015-03-04 08:36 - 2012-01-21 22:39 - 0000258 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.unicharset
2015-03-04 08:36 - 2012-01-20 23:32 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.user-words
2015-03-04 08:36 - 2012-01-20 23:32 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.word-dawg
2015-03-04 08:36 - 2007-05-31 18:15 - 0000392 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.DangAmbigs
2015-03-04 08:36 - 2007-05-31 18:15 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.freq-dawg
2015-03-04 08:36 - 2011-10-04 20:38 - 0299898 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.inttemp
2015-03-04 08:36 - 2011-10-04 20:38 - 0005041 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.normproto
2015-03-04 08:36 - 2011-10-04 20:38 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.pffmtable
2015-03-04 08:36 - 2011-10-04 20:38 - 0000192 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.unicharset
2015-03-04 08:36 - 2007-05-10 20:17 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.user-words
2015-03-04 08:36 - 2007-05-31 18:15 - 0809728 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.word-dawg
2015-03-04 08:36 - 2012-02-14 11:33 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.DangAmbigs
2015-03-04 08:36 - 2012-02-14 11:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.freq-dawg
2015-03-04 08:36 - 2012-02-14 11:49 - 0356734 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.inttemp
2015-03-04 08:36 - 2012-02-14 11:49 - 0008887 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.normproto
2015-03-04 08:36 - 2012-02-14 11:49 - 0000315 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.pffmtable
2015-03-04 08:36 - 2012-02-14 11:49 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.unicharset
2015-03-04 08:36 - 2012-02-14 11:33 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.user-words
2015-03-04 08:36 - 2012-02-14 11:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.word-dawg
2015-03-04 08:36 - 2012-02-10 01:06 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.DangAmbigs
2015-03-04 08:36 - 2012-02-10 01:06 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.freq-dawg
2015-03-04 08:36 - 2012-02-10 01:06 - 0299898 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.inttemp
2015-03-04 08:36 - 2012-02-10 01:06 - 0004923 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.normproto
2015-03-04 08:36 - 2012-02-10 01:06 - 0000180 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.pffmtable
2015-03-04 08:36 - 2012-02-10 01:06 - 0000192 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.unicharset
2015-03-04 08:36 - 2012-02-10 01:06 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.user-words
2015-03-04 08:36 - 2012-02-10 01:06 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.word-dawg
2015-03-04 08:36 - 2012-02-17 08:47 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.DangAmbigs
2015-03-04 08:36 - 2012-02-17 08:48 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.freq-dawg
2015-03-04 08:36 - 2012-02-17 08:48 - 0149958 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.inttemp
2015-03-04 08:36 - 2012-02-17 08:48 - 0026995 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.normproto
2015-03-04 08:36 - 2012-02-17 08:48 - 0000090 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.pffmtable
2015-03-04 08:36 - 2012-02-17 08:48 - 0000102 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.unicharset
2015-03-04 08:36 - 2012-02-17 08:47 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.user-words
2015-03-04 08:36 - 2012-02-17 08:48 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.word-dawg
2015-03-04 08:36 - 2012-02-26 08:45 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.DangAmbigs
2015-03-04 08:36 - 2012-02-26 08:45 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.freq-dawg
2015-03-04 08:36 - 2012-02-26 08:45 - 0454592 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.inttemp
2015-03-04 08:36 - 2012-02-26 08:45 - 0006377 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.normproto
2015-03-04 08:36 - 2012-02-26 08:45 - 0000226 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.pffmtable
2015-03-04 08:36 - 2012-02-26 08:45 - 0000402 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.unicharset
2015-03-04 08:36 - 2012-02-26 08:45 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.user-words
2015-03-04 08:36 - 2012-02-26 08:45 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.word-dawg
2015-03-04 08:36 - 2012-04-16 05:19 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.DangAmbigs
2015-03-04 08:36 - 2012-04-16 05:19 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.freq-dawg
2015-03-04 08:36 - 2012-04-16 09:46 - 0802366 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.inttemp
2015-03-04 08:36 - 2012-04-16 09:46 - 0009232 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.normproto
2015-03-04 08:36 - 2012-04-16 09:46 - 0000346 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.pffmtable
2015-03-04 08:36 - 2012-04-16 09:46 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.unicharset
2015-03-04 08:36 - 2012-04-16 05:19 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.user-words
2015-03-04 08:36 - 2012-04-16 05:19 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.word-dawg
2015-03-04 08:36 - 2012-04-16 16:49 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.DangAmbigs
2015-03-04 08:36 - 2012-04-16 16:49 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.freq-dawg
2015-03-04 08:36 - 2012-05-22 09:43 - 0220468 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.inttemp
2015-03-04 08:36 - 2012-05-22 09:43 - 0003662 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.normproto
2015-03-04 08:36 - 2012-05-22 09:43 - 0000145 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.pffmtable
2015-03-04 08:36 - 2012-05-22 09:43 - 0000276 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.unicharset
2015-03-04 08:36 - 2012-04-16 16:49 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.user-words
2015-03-04 08:36 - 2012-04-16 16:49 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.word-dawg
2015-03-04 08:36 - 2012-03-11 19:50 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.DangAmbigs
2015-03-04 08:36 - 2012-03-11 20:53 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.freq-dawg
2015-03-04 08:36 - 2012-03-11 20:53 - 0359330 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.inttemp
2015-03-04 08:36 - 2012-03-11 20:53 - 0046864 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.normproto
2015-03-04 08:36 - 2012-03-11 20:53 - 0000211 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.pffmtable
2015-03-04 08:36 - 2012-03-11 20:53 - 0000213 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.unicharset
2015-03-04 08:36 - 2012-03-11 19:50 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.user-words
2015-03-04 08:36 - 2012-03-11 20:53 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.word-dawg
2015-03-04 08:36 - 2011-10-07 16:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.DangAmbigs
2015-03-04 08:36 - 2011-10-07 16:50 - 0000040 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.freq-dawg
2015-03-04 08:36 - 2011-10-07 16:50 - 0180562 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.inttemp
2015-03-04 08:36 - 2011-10-07 16:50 - 0041143 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.normproto
2015-03-04 08:36 - 2011-10-07 16:50 - 0000160 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.pffmtable
2015-03-04 08:36 - 2011-10-07 16:50 - 0000172 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.unicharset
2015-03-04 08:36 - 2011-10-07 16:48 - 0000010 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.user-words
2015-03-04 08:36 - 2011-10-07 16:50 - 0000040 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.word-dawg
2015-03-04 08:36 - 2011-12-04 00:02 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.DangAmbigs
2015-03-04 08:36 - 2011-12-04 00:02 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.freq-dawg
2015-03-04 08:36 - 2011-12-04 00:01 - 0513210 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.inttemp
2015-03-04 08:36 - 2011-12-04 00:01 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.normproto
2015-03-04 08:36 - 2011-12-04 00:01 - 0000180 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.pffmtable
2015-03-04 08:36 - 2011-12-04 00:01 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.unicharset
2015-03-04 08:36 - 2011-12-04 00:02 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.user-words
2015-03-04 08:36 - 2011-12-04 00:02 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.word-dawg
2015-03-04 08:36 - 2011-12-06 14:03 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.DangAmbigs
2015-03-04 08:36 - 2011-12-06 14:03 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.freq-dawg
2015-03-04 08:36 - 2011-12-06 14:04 - 0836306 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.inttemp
2015-03-04 08:36 - 2011-12-06 14:04 - 0007862 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.normproto
2015-03-04 08:36 - 2011-12-06 14:04 - 0000324 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.pffmtable
2015-03-04 08:36 - 2011-12-06 14:04 - 0000591 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.unicharset
2015-03-04 08:36 - 2011-12-06 14:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.user-words
2015-03-04 08:36 - 2011-12-06 14:03 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.word-dawg
2015-03-04 08:36 - 2011-12-07 07:44 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.DangAmbigs
2015-03-04 08:36 - 2011-12-07 07:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.freq-dawg
2015-03-04 08:36 - 2011-12-07 07:44 - 0602062 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.inttemp
2015-03-04 08:36 - 2011-12-07 07:44 - 0005202 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.normproto
2015-03-04 08:36 - 2011-12-07 07:44 - 0000193 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.pffmtable
2015-03-04 08:36 - 2011-12-07 07:44 - 0000357 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.unicharset
2015-03-04 08:36 - 2011-12-07 07:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.user-words
2015-03-04 08:36 - 2011-12-07 07:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.word-dawg
2015-03-04 08:36 - 2011-11-16 09:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.DangAmbigs
2015-03-04 08:36 - 2011-11-16 20:17 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.freq-dawg
2015-03-04 08:36 - 2011-11-16 20:17 - 0132470 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.inttemp
2015-03-04 08:36 - 2011-11-16 20:17 - 0008400 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.normproto
2015-03-04 08:36 - 2011-11-16 20:17 - 0000050 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.pffmtable
2015-03-04 08:36 - 2011-11-16 20:17 - 0000062 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.unicharset
2015-03-04 08:36 - 2011-11-16 09:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.user-words
2015-03-04 08:36 - 2011-11-16 20:17 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.word-dawg
2015-03-04 08:36 - 2011-11-16 22:38 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.DangAmbigs
2015-03-04 08:36 - 2011-11-16 22:38 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.freq-dawg
2015-03-04 08:36 - 2011-11-16 22:38 - 0160888 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.inttemp
2015-03-04 08:36 - 2011-11-16 22:38 - 0007428 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.normproto
2015-03-04 08:36 - 2011-11-16 22:38 - 0000115 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.pffmtable
2015-03-04 08:36 - 2011-11-16 22:38 - 0000127 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.unicharset
2015-03-04 08:36 - 2011-11-16 22:38 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.user-words
2015-03-04 08:36 - 2011-11-16 22:38 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.word-dawg
2015-03-04 08:36 - 2011-11-18 15:01 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.DangAmbigs
2015-03-04 08:36 - 2011-11-18 15:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.freq-dawg
2015-03-04 08:36 - 2011-11-18 15:03 - 0147772 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.inttemp
2015-03-04 08:36 - 2011-11-18 15:03 - 0044219 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.normproto
2015-03-04 08:36 - 2011-11-18 15:03 - 0000085 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.pffmtable
2015-03-04 08:36 - 2011-11-18 15:03 - 0000097 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.unicharset
2015-03-04 08:36 - 2011-11-18 15:01 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.user-words
2015-03-04 08:36 - 2011-11-18 15:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.word-dawg
2015-03-04 08:36 - 2007-05-31 18:15 - 0000392 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.DangAmbigs
2015-03-04 08:36 - 2007-05-31 18:15 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.freq-dawg
2015-03-04 08:36 - 2007-06-09 01:33 - 0862544 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.inttemp
2015-03-04 08:36 - 2007-06-09 01:33 - 0039862 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.normproto
2015-03-04 08:36 - 2007-06-09 01:33 - 0000590 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.pffmtable
2015-03-04 08:36 - 2007-05-31 18:15 - 0000480 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.unicharset
2015-03-04 08:36 - 2007-05-10 20:17 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.user-words
2015-03-04 08:36 - 2007-05-31 18:15 - 0809728 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.word-dawg
2015-03-04 08:36 - 2015-03-04 09:04 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck
2015-03-04 08:36 - 2014-06-24 00:55 - 0000015 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1403571329.txt
2015-03-04 08:36 - 2014-06-24 00:57 - 0005314 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1403571423.txt
2015-03-04 09:04 - 2015-03-04 09:04 - 0004922 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1425459855.txt
====== End of Folder: ======
Hosts was reset successfully.
EmptyTemp: => Removed 1016.7 MB temporary data.
The system needed a reboot.
==== End of Fixlog 07:14:24 ====
ten crckingh poprosim prekuknut 
Ran by Spravca at 2015-03-07 07:12:53 Run:1
Running from C:\Users\Spravca\Downloads
Loaded Profiles: Spravca (Available profiles: Spravca & Aero)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM-x32\...\Run: [DEXTIFICATOR] => c:\users\spravca\documents\visual studio 2013\Projects\WindowsFormsApplication4\WindowsFormsApplication4\bin\Debug\WindowsFormsApplication4.EXE [10240 2015-03-01] ()
HKU\S-1-5-21-144053010-3787646527-420655005-1000\...\Run: [uTorrent] => C:\Users\Spravca\AppData\Roaming\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.)
AppInit_DLLs-x32: => "" File Not Found
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File
Handler: WSISAllmytubechrome - No CLSID Value
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q=
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Extension: No Name - C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com [Not Found]
CHR Extension: (µBlock) - C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-02-06]
S4 FileZilla Server; "C:\Users\Spravca\Downloads\xampp-win32-1.7.7-VC9\xampp\filezillaftp\filezillaserver.exe" [X]
S3 1PBLikesItAnal; C:\Users\Spravca\Downloads\hwspoofer (1)\objecttree\OBT.sys [6144 2006-04-18] () [File not signed]
S4 ALSysIO; \??\C:\Users\Spravca\AppData\Local\Temp\ALSysIO64.sys [X]
S4 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S4 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S3 PBDOWNFORCE_TEST_SERVICE; \??\C:\Users\Spravca\Downloads\Hacking\------------------ Cs 1.6 --------------\PBDownForce0.2BETA\Test.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
2015-03-05 18:21 - 2015-03-05 18:25 - 00000000 ____D () C:\AdwCleaner
2015-03-05 18:20 - 2015-03-05 18:20 - 02126848 _____ () C:\Users\Spravca\Downloads\AdwCleaner.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 01222144 _____ () C:\Users\Spravca\Downloads\RSITx64.exe
2015-03-04 21:04 - 2015-03-04 21:04 - 00000000 ____D () C:\rsit
2014-01-29 00:47 - 2014-01-29 00:47 - 0004107 _____ () C:\ProgramData\jfumnmdv.qtf
2014-12-26 01:05 - 2014-12-26 01:05 - 0000016 _____ () C:\ProgramData\mntemp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => C:\Users\Spravca\AppData\Local\Google\Update\GoogleUpdate.exe
Folder: C:\crckingh
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DEXTIFICATOR => value deleted successfully.
HKU\S-1-5-21-144053010-3787646527-420655005-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value deleted successfully.
"AppInit_DLLs-x32: => "" File Not Found" => Value Data not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-144053010-3787646527-420655005-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} => Key not found.
"HKCR\PROTOCOLS\Handler\WSISAllmytubechrome" => Key deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
C:\Users\Spravca\AppData\Roaming\Mozilla\Firefox\Profiles\gdha1i0b.default\extensions\faststartff@gmail.com not found.
C:\Users\Spravca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm => Moved successfully.
FileZilla Server => Service deleted successfully.
1PBLikesItAnal => Service deleted successfully.
ALSysIO => Service deleted successfully.
cpuz136 => Service deleted successfully.
EagleX64 => Service deleted successfully.
FairplayKD => Service deleted successfully.
GGSAFERDriver => Service deleted successfully.
LMIInfo => Service deleted successfully.
PBDOWNFORCE_TEST_SERVICE => Service deleted successfully.
X6va015 => Service deleted successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Spravca\Downloads\AdwCleaner.exe => Moved successfully.
C:\Users\Spravca\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\ProgramData\jfumnmdv.qtf => Moved successfully.
C:\ProgramData\mntemp => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-144053010-3787646527-420655005-1000UA1cf8c48b749628.job => Moved successfully.
========================= Folder: C:\crckingh ========================
2015-03-04 08:36 - 2015-03-04 08:36 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack
2015-03-04 08:36 - 2014-08-30 23:52 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\LoLScraper
2015-03-04 08:36 - 2014-08-09 20:54 - 0503808 _____ () C:\crckingh\Conceitful's LoLCrack Pack\LoLScraper\League of Legends Scraper.exe
2015-03-04 08:36 - 2015-03-04 09:04 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA
2015-03-04 08:36 - 2015-03-04 08:49 - 0000000 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Fav.ini
2015-03-04 08:36 - 2012-07-17 08:54 - 0003510 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\GlobalKeys.ini
2015-03-04 08:36 - 2015-03-04 09:04 - 0000005 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\History.ini
2015-03-04 08:36 - 2011-12-02 16:01 - 0160682 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ImageData.dat
2015-03-04 08:36 - 2011-04-09 14:11 - 6324974 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ipfilter.dat
2015-03-04 08:36 - 2009-07-23 17:32 - 1122304 _____ (The OpenSSL Project, http://www.openssl.org/) C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\libeay32.dll
2015-03-04 08:36 - 2015-03-04 09:04 - 8568098 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\MyList.ini
2015-03-04 08:36 - 2012-07-19 16:17 - 5556224 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Sentry_MBA.exe
2015-03-04 08:36 - 2015-03-04 09:04 - 0005107 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Settings.ini
2015-03-04 08:36 - 2015-03-04 09:04 - 0000074 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\Sites.ini
2015-03-04 08:36 - 2009-07-23 17:32 - 0274432 _____ (The OpenSSL Project, http://www.openssl.org/) C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ssleay32.dll
2015-03-04 08:36 - 2009-06-30 03:56 - 0750080 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdll.dll
2015-03-04 08:36 - 2015-03-04 09:04 - 0000081 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\WordlistsLoaded.ini
2015-03-04 08:36 - 2014-06-24 00:54 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\SnapShots
2015-03-04 08:36 - 2015-03-04 09:04 - 0004269 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\SnapShots\lq.na.lol.riotgames.com.ini
2015-03-04 08:36 - 2011-04-19 12:15 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata
2015-03-04 08:36 - 2011-11-22 18:36 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.DangAmbigs
2015-03-04 08:36 - 2011-11-22 06:01 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.freq-dawg
2015-03-04 08:36 - 2011-11-29 04:50 - 0304122 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.inttemp
2015-03-04 08:36 - 2011-11-29 04:50 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.normproto
2015-03-04 08:36 - 2011-11-29 04:50 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.pffmtable
2015-03-04 08:36 - 2011-11-29 04:50 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.unicharset
2015-03-04 08:36 - 2011-11-25 03:23 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.user-words
2015-03-04 08:36 - 2011-11-22 06:01 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp1.word-dawg
2015-03-04 08:36 - 2011-11-30 05:44 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.DangAmbigs
2015-03-04 08:36 - 2011-11-30 05:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.freq-dawg
2015-03-04 08:36 - 2011-11-30 19:36 - 0544890 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.inttemp
2015-03-04 08:36 - 2011-11-30 19:36 - 0004847 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.normproto
2015-03-04 08:36 - 2011-11-30 19:36 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.pffmtable
2015-03-04 08:36 - 2011-11-30 19:36 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.unicharset
2015-03-04 08:36 - 2011-11-30 06:12 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.user-words
2015-03-04 08:36 - 2011-11-30 05:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp10.word-dawg
2015-03-04 08:36 - 2011-12-19 16:44 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.DangAmbigs
2015-03-04 08:36 - 2011-12-19 16:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.freq-dawg
2015-03-04 08:36 - 2011-12-19 16:44 - 0356734 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.inttemp
2015-03-04 08:36 - 2011-12-19 16:44 - 0008999 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.normproto
2015-03-04 08:36 - 2011-12-19 16:44 - 0000310 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.pffmtable
2015-03-04 08:36 - 2011-12-19 16:44 - 0000322 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.unicharset
2015-03-04 08:36 - 2011-12-19 16:44 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.user-words
2015-03-04 08:36 - 2011-12-19 16:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp11.word-dawg
2015-03-04 08:36 - 2011-12-20 07:05 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.DangAmbigs
2015-03-04 08:36 - 2011-12-20 07:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.freq-dawg
2015-03-04 08:36 - 2011-12-21 05:47 - 0206538 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.inttemp
2015-03-04 08:36 - 2011-12-21 05:47 - 0001625 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.normproto
2015-03-04 08:36 - 2011-12-21 05:47 - 0000075 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.pffmtable
2015-03-04 08:36 - 2011-12-21 05:47 - 0000126 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.unicharset
2015-03-04 08:36 - 2011-12-20 07:05 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.user-words
2015-03-04 08:36 - 2011-12-20 07:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp12.word-dawg
2015-03-04 08:36 - 2011-12-22 10:30 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.DangAmbigs
2015-03-04 08:36 - 2011-12-22 10:30 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.freq-dawg
2015-03-04 08:36 - 2011-12-22 10:41 - 0254038 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.inttemp
2015-03-04 08:36 - 2011-12-22 10:41 - 0003302 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.normproto
2015-03-04 08:36 - 2011-12-22 10:41 - 0000140 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.pffmtable
2015-03-04 08:36 - 2011-12-22 10:41 - 0000249 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.unicharset
2015-03-04 08:36 - 2011-12-22 10:30 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.user-words
2015-03-04 08:36 - 2011-12-22 10:30 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp13.word-dawg
2015-03-04 08:36 - 2011-12-26 06:31 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.DangAmbigs
2015-03-04 08:36 - 2011-12-26 06:31 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.freq-dawg
2015-03-04 08:36 - 2011-12-26 06:35 - 0495670 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.inttemp
2015-03-04 08:36 - 2011-12-26 06:35 - 0009072 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.normproto
2015-03-04 08:36 - 2011-12-26 06:35 - 0000383 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.pffmtable
2015-03-04 08:36 - 2011-12-26 06:35 - 0000691 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.unicharset
2015-03-04 08:36 - 2011-12-26 06:31 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.user-words
2015-03-04 08:36 - 2011-12-26 06:31 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp14.word-dawg
2015-03-04 08:36 - 2011-12-17 08:33 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.DangAmbigs
2015-03-04 08:36 - 2011-12-17 08:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.freq-dawg
2015-03-04 08:36 - 2011-12-17 08:33 - 0399162 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.inttemp
2015-03-04 08:36 - 2011-12-17 08:33 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.normproto
2015-03-04 08:36 - 2011-12-17 08:33 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.pffmtable
2015-03-04 08:36 - 2011-12-17 08:33 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.unicharset
2015-03-04 08:36 - 2011-12-17 08:33 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.user-words
2015-03-04 08:36 - 2011-12-17 08:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp15.word-dawg
2015-03-04 08:36 - 2012-01-01 04:05 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.DangAmbigs
2015-03-04 08:36 - 2012-01-01 04:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.freq-dawg
2015-03-04 08:36 - 2012-01-02 06:03 - 0308346 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.inttemp
2015-03-04 08:36 - 2012-01-02 06:03 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.normproto
2015-03-04 08:36 - 2012-01-02 06:03 - 0000186 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.pffmtable
2015-03-04 08:36 - 2012-01-02 06:03 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.unicharset
2015-03-04 08:36 - 2012-01-01 04:05 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.user-words
2015-03-04 08:36 - 2012-01-01 04:05 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp16.word-dawg
2015-03-04 08:36 - 2011-12-30 22:38 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.DangAmbigs
2015-03-04 08:36 - 2011-12-30 22:38 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.freq-dawg
2015-03-04 08:36 - 2011-12-30 22:38 - 0363070 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.inttemp
2015-03-04 08:36 - 2011-12-30 22:38 - 0007622 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.normproto
2015-03-04 08:36 - 2011-12-30 22:38 - 0000314 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.pffmtable
2015-03-04 08:36 - 2011-12-30 22:38 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.unicharset
2015-03-04 08:36 - 2011-12-30 22:38 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.user-words
2015-03-04 08:36 - 2011-12-30 22:38 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp17.word-dawg
2015-03-04 08:36 - 2012-01-13 00:10 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.DangAmbigs
2015-03-04 08:36 - 2012-01-13 00:10 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.freq-dawg
2015-03-04 08:36 - 2012-01-13 10:00 - 0374114 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.inttemp
2015-03-04 08:36 - 2012-01-13 10:00 - 0005681 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.normproto
2015-03-04 08:36 - 2012-01-13 10:00 - 0000228 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.pffmtable
2015-03-04 08:36 - 2012-01-13 10:00 - 0000384 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.unicharset
2015-03-04 08:36 - 2012-01-13 00:10 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.user-words
2015-03-04 08:36 - 2012-01-13 00:10 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp18.word-dawg
2015-03-04 08:36 - 2012-01-20 23:32 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.DangAmbigs
2015-03-04 08:36 - 2012-01-20 23:32 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.freq-dawg
2015-03-04 08:36 - 2012-01-21 22:39 - 0171744 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.inttemp
2015-03-04 08:36 - 2012-01-21 22:39 - 0003537 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.normproto
2015-03-04 08:36 - 2012-01-21 22:39 - 0000136 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.pffmtable
2015-03-04 08:36 - 2012-01-21 22:39 - 0000258 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.unicharset
2015-03-04 08:36 - 2012-01-20 23:32 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.user-words
2015-03-04 08:36 - 2012-01-20 23:32 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp19.word-dawg
2015-03-04 08:36 - 2007-05-31 18:15 - 0000392 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.DangAmbigs
2015-03-04 08:36 - 2007-05-31 18:15 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.freq-dawg
2015-03-04 08:36 - 2011-10-04 20:38 - 0299898 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.inttemp
2015-03-04 08:36 - 2011-10-04 20:38 - 0005041 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.normproto
2015-03-04 08:36 - 2011-10-04 20:38 - 0000181 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.pffmtable
2015-03-04 08:36 - 2011-10-04 20:38 - 0000192 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.unicharset
2015-03-04 08:36 - 2007-05-10 20:17 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.user-words
2015-03-04 08:36 - 2007-05-31 18:15 - 0809728 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp2.word-dawg
2015-03-04 08:36 - 2012-02-14 11:33 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.DangAmbigs
2015-03-04 08:36 - 2012-02-14 11:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.freq-dawg
2015-03-04 08:36 - 2012-02-14 11:49 - 0356734 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.inttemp
2015-03-04 08:36 - 2012-02-14 11:49 - 0008887 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.normproto
2015-03-04 08:36 - 2012-02-14 11:49 - 0000315 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.pffmtable
2015-03-04 08:36 - 2012-02-14 11:49 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.unicharset
2015-03-04 08:36 - 2012-02-14 11:33 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.user-words
2015-03-04 08:36 - 2012-02-14 11:33 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp20.word-dawg
2015-03-04 08:36 - 2012-02-10 01:06 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.DangAmbigs
2015-03-04 08:36 - 2012-02-10 01:06 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.freq-dawg
2015-03-04 08:36 - 2012-02-10 01:06 - 0299898 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.inttemp
2015-03-04 08:36 - 2012-02-10 01:06 - 0004923 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.normproto
2015-03-04 08:36 - 2012-02-10 01:06 - 0000180 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.pffmtable
2015-03-04 08:36 - 2012-02-10 01:06 - 0000192 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.unicharset
2015-03-04 08:36 - 2012-02-10 01:06 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.user-words
2015-03-04 08:36 - 2012-02-10 01:06 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp22.word-dawg
2015-03-04 08:36 - 2012-02-17 08:47 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.DangAmbigs
2015-03-04 08:36 - 2012-02-17 08:48 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.freq-dawg
2015-03-04 08:36 - 2012-02-17 08:48 - 0149958 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.inttemp
2015-03-04 08:36 - 2012-02-17 08:48 - 0026995 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.normproto
2015-03-04 08:36 - 2012-02-17 08:48 - 0000090 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.pffmtable
2015-03-04 08:36 - 2012-02-17 08:48 - 0000102 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.unicharset
2015-03-04 08:36 - 2012-02-17 08:47 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.user-words
2015-03-04 08:36 - 2012-02-17 08:48 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp23.word-dawg
2015-03-04 08:36 - 2012-02-26 08:45 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.DangAmbigs
2015-03-04 08:36 - 2012-02-26 08:45 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.freq-dawg
2015-03-04 08:36 - 2012-02-26 08:45 - 0454592 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.inttemp
2015-03-04 08:36 - 2012-02-26 08:45 - 0006377 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.normproto
2015-03-04 08:36 - 2012-02-26 08:45 - 0000226 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.pffmtable
2015-03-04 08:36 - 2012-02-26 08:45 - 0000402 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.unicharset
2015-03-04 08:36 - 2012-02-26 08:45 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.user-words
2015-03-04 08:36 - 2012-02-26 08:45 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp24.word-dawg
2015-03-04 08:36 - 2012-04-16 05:19 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.DangAmbigs
2015-03-04 08:36 - 2012-04-16 05:19 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.freq-dawg
2015-03-04 08:36 - 2012-04-16 09:46 - 0802366 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.inttemp
2015-03-04 08:36 - 2012-04-16 09:46 - 0009232 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.normproto
2015-03-04 08:36 - 2012-04-16 09:46 - 0000346 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.pffmtable
2015-03-04 08:36 - 2012-04-16 09:46 - 0000573 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.unicharset
2015-03-04 08:36 - 2012-04-16 05:19 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.user-words
2015-03-04 08:36 - 2012-04-16 05:19 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp25.word-dawg
2015-03-04 08:36 - 2012-04-16 16:49 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.DangAmbigs
2015-03-04 08:36 - 2012-04-16 16:49 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.freq-dawg
2015-03-04 08:36 - 2012-05-22 09:43 - 0220468 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.inttemp
2015-03-04 08:36 - 2012-05-22 09:43 - 0003662 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.normproto
2015-03-04 08:36 - 2012-05-22 09:43 - 0000145 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.pffmtable
2015-03-04 08:36 - 2012-05-22 09:43 - 0000276 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.unicharset
2015-03-04 08:36 - 2012-04-16 16:49 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.user-words
2015-03-04 08:36 - 2012-04-16 16:49 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp26.word-dawg
2015-03-04 08:36 - 2012-03-11 19:50 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.DangAmbigs
2015-03-04 08:36 - 2012-03-11 20:53 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.freq-dawg
2015-03-04 08:36 - 2012-03-11 20:53 - 0359330 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.inttemp
2015-03-04 08:36 - 2012-03-11 20:53 - 0046864 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.normproto
2015-03-04 08:36 - 2012-03-11 20:53 - 0000211 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.pffmtable
2015-03-04 08:36 - 2012-03-11 20:53 - 0000213 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.unicharset
2015-03-04 08:36 - 2012-03-11 19:50 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.user-words
2015-03-04 08:36 - 2012-03-11 20:53 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp27.word-dawg
2015-03-04 08:36 - 2011-10-07 16:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.DangAmbigs
2015-03-04 08:36 - 2011-10-07 16:50 - 0000040 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.freq-dawg
2015-03-04 08:36 - 2011-10-07 16:50 - 0180562 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.inttemp
2015-03-04 08:36 - 2011-10-07 16:50 - 0041143 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.normproto
2015-03-04 08:36 - 2011-10-07 16:50 - 0000160 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.pffmtable
2015-03-04 08:36 - 2011-10-07 16:50 - 0000172 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.unicharset
2015-03-04 08:36 - 2011-10-07 16:48 - 0000010 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.user-words
2015-03-04 08:36 - 2011-10-07 16:50 - 0000040 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp3.word-dawg
2015-03-04 08:36 - 2011-12-04 00:02 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.DangAmbigs
2015-03-04 08:36 - 2011-12-04 00:02 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.freq-dawg
2015-03-04 08:36 - 2011-12-04 00:01 - 0513210 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.inttemp
2015-03-04 08:36 - 2011-12-04 00:01 - 0004502 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.normproto
2015-03-04 08:36 - 2011-12-04 00:01 - 0000180 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.pffmtable
2015-03-04 08:36 - 2011-12-04 00:01 - 0000339 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.unicharset
2015-03-04 08:36 - 2011-12-04 00:02 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.user-words
2015-03-04 08:36 - 2011-12-04 00:02 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp4.word-dawg
2015-03-04 08:36 - 2011-12-06 14:03 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.DangAmbigs
2015-03-04 08:36 - 2011-12-06 14:03 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.freq-dawg
2015-03-04 08:36 - 2011-12-06 14:04 - 0836306 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.inttemp
2015-03-04 08:36 - 2011-12-06 14:04 - 0007862 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.normproto
2015-03-04 08:36 - 2011-12-06 14:04 - 0000324 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.pffmtable
2015-03-04 08:36 - 2011-12-06 14:04 - 0000591 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.unicharset
2015-03-04 08:36 - 2011-12-06 14:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.user-words
2015-03-04 08:36 - 2011-12-06 14:03 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp5.word-dawg
2015-03-04 08:36 - 2011-12-07 07:44 - 0000425 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.DangAmbigs
2015-03-04 08:36 - 2011-12-07 07:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.freq-dawg
2015-03-04 08:36 - 2011-12-07 07:44 - 0602062 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.inttemp
2015-03-04 08:36 - 2011-12-07 07:44 - 0005202 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.normproto
2015-03-04 08:36 - 2011-12-07 07:44 - 0000193 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.pffmtable
2015-03-04 08:36 - 2011-12-07 07:44 - 0000357 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.unicharset
2015-03-04 08:36 - 2011-12-07 07:44 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.user-words
2015-03-04 08:36 - 2011-12-07 07:44 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp6.word-dawg
2015-03-04 08:36 - 2011-11-16 09:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.DangAmbigs
2015-03-04 08:36 - 2011-11-16 20:17 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.freq-dawg
2015-03-04 08:36 - 2011-11-16 20:17 - 0132470 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.inttemp
2015-03-04 08:36 - 2011-11-16 20:17 - 0008400 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.normproto
2015-03-04 08:36 - 2011-11-16 20:17 - 0000050 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.pffmtable
2015-03-04 08:36 - 2011-11-16 20:17 - 0000062 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.unicharset
2015-03-04 08:36 - 2011-11-16 09:48 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.user-words
2015-03-04 08:36 - 2011-11-16 20:17 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp7.word-dawg
2015-03-04 08:36 - 2011-11-16 22:38 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.DangAmbigs
2015-03-04 08:36 - 2011-11-16 22:38 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.freq-dawg
2015-03-04 08:36 - 2011-11-16 22:38 - 0160888 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.inttemp
2015-03-04 08:36 - 2011-11-16 22:38 - 0007428 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.normproto
2015-03-04 08:36 - 2011-11-16 22:38 - 0000115 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.pffmtable
2015-03-04 08:36 - 2011-11-16 22:38 - 0000127 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.unicharset
2015-03-04 08:36 - 2011-11-16 22:38 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.user-words
2015-03-04 08:36 - 2011-11-16 22:38 - 0000012 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp8.word-dawg
2015-03-04 08:36 - 2011-11-18 15:01 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.DangAmbigs
2015-03-04 08:36 - 2011-11-18 15:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.freq-dawg
2015-03-04 08:36 - 2011-11-18 15:03 - 0147772 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.inttemp
2015-03-04 08:36 - 2011-11-18 15:03 - 0044219 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.normproto
2015-03-04 08:36 - 2011-11-18 15:03 - 0000085 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.pffmtable
2015-03-04 08:36 - 2011-11-18 15:03 - 0000097 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.unicharset
2015-03-04 08:36 - 2011-11-18 15:01 - 0000003 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.user-words
2015-03-04 08:36 - 2011-11-18 15:03 - 0000016 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\cp9.word-dawg
2015-03-04 08:36 - 2007-05-31 18:15 - 0000392 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.DangAmbigs
2015-03-04 08:36 - 2007-05-31 18:15 - 0000672 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.freq-dawg
2015-03-04 08:36 - 2007-06-09 01:33 - 0862544 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.inttemp
2015-03-04 08:36 - 2007-06-09 01:33 - 0039862 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.normproto
2015-03-04 08:36 - 2007-06-09 01:33 - 0000590 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.pffmtable
2015-03-04 08:36 - 2007-05-31 18:15 - 0000480 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.unicharset
2015-03-04 08:36 - 2007-05-10 20:17 - 0007289 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.user-words
2015-03-04 08:36 - 2007-05-31 18:15 - 0809728 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\tessdata\eng.word-dawg
2015-03-04 08:36 - 2015-03-04 09:04 - 0000000 ____D () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck
2015-03-04 08:36 - 2014-06-24 00:55 - 0000015 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1403571329.txt
2015-03-04 08:36 - 2014-06-24 00:57 - 0005314 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1403571423.txt
2015-03-04 09:04 - 2015-03-04 09:04 - 0004922 _____ () C:\crckingh\Conceitful's LoLCrack Pack\Sentry MBA\ToCheck\riotgames_1425459855.txt
====== End of Folder: ======
Hosts was reset successfully.
EmptyTemp: => Removed 1016.7 MB temporary data.
The system needed a reboot.
==== End of Fixlog 07:14:24 ====


Re: Preventivka




- Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
- Oznacte jen moznost "Remove disinfection tools"
- kliknete na Run
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka
dakujem velmi pekne, krasny zvysok dna.
Re: Preventivka
Nemate zac, rad jsem pomohl
Mejte se krasne a treba zase nekdy

Mejte se krasne a treba zase nekdy

Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.