VIRY.CZ

Dobrý den, v prohlížečích mi vyskakují okna, viz obr. 1, nezastaví je ani adblocker, když kliknu na malé options pod čtverečkem, vyjede mi okno viz obr.2, kde to lze deaktivovat, ale stejně to tam stále skáče, jak bych se toho mohl zbavit prosím? Nezabral ani SPYWARE Fighter.

RSIT: Logfile of random's system information tool 1.10 (written by random/random)
Run by Božáček at 2015-04-30 15:56:12
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 38 GB (29%) free of 134 GB
Total RAM: 6143 MB (15% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:56:37, on 30.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe
C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
C:\Program Files (x86)\Fighters\Tray\FightersTray.exe
C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe
C:\Program Files (x86)\Fighters\Tray\FightersTray.exe
C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
E:\Archiv\!_Instalace\Paint Shop Pro 7\PSP.EXE
C:\Program Files\trend micro\Božáček.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=ironpu ... 1298386547
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=ironpu ... 1298386547
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {4DB74D06-491C-440D-305E-012400990F3E} - C:\Windows\SysWOW64\crredui.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKLM\..\Run: [CommonToolkitTray] C:\Program Files (x86)\Fighters\Tray\FightersTray.exe
O4 - HKLM\..\Run: [SWPROguard] C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Božáček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [iLivid] "C:\Users\Božáček\AppData\Local\iLivid\iLivid.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4021130684-3837087373-3470918577-1004\..\Run: [cz.seznam.software.szndesktop] "C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q (User 'GTA V')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AV Engine Scanning Service - Preventon Technologies Limited - C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe
O23 - Service: AV Watch Service - Preventon Technologies Limited - C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Cisco Security Service (ciscod.exe) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco HostScan\bin\ciscod.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: ESL Wire Helper Service (EslWireHelper) - Unknown owner - C:\Program Files\EslWire\service\WireHelperSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Suite Service - SPAMfighter ApS - C:\Program Files (x86)\Fighters\FighterSuiteService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15453 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2ec
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe"
"C:\Windows\system32\Dwm.exe"
"C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe"
"taskhost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Cisco\Cisco HostScan\bin\ciscod.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\EslWire\service\WireHelperSvc.exe"
"C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
C:\Windows\SysWOW64\IoctlSvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Fighters\FighterSuiteService.exe"
szndesktop.exe default start
"C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\Totalcmd\TOTALCMD.EXE"
"C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe" /r
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Fighters\Tray\FightersTray.exe"
"C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"G:\GTAVLauncher.exe"
"C:\Program Files\Rockstar Games\Social Club\subprocess.exe" --rgsc_pid=4892 --rgsc_ipc_channel_name=rgsc_ipc_131c --rgsc_home_dir=C:\Users\GTA*%20*V\Documents\Rockstar*%20*Games\Social*%20*Club\Launcher\Renderer\ --no-proxy-server --safebrowsing-disable-auto-update --disable-spell-checking --disable-gpu --lang=en
"C:\Program Files\Rockstar Games\Social Club\subprocess.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en --log-severity=disable --disable-spell-checking --device-scale-factor=1 --font-cache-shared-mem-suffix=4876 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-gpu-compositing --channel="4876.0.93362083\229866148" --rgsc_ipc_channel_name=rgsc_ipc_131c_channel_1 /prefetch:673131151
"G:\GTA5.exe"
"C:\Program Files\Rockstar Games\Social Club\subprocess.exe" --rgsc_pid=4312 --rgsc_ipc_channel_name=rgsc_ipc_10d8 --rgsc_home_dir=C:\Users\GTA*%20*V\Documents\Rockstar*%20*Games\Social*%20*Club\Renderer\ --no-proxy-server --safebrowsing-disable-auto-update --disable-spell-checking --disable-gpu --lang=en
"C:\Program Files\Rockstar Games\Social Club\subprocess.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en --log-severity=disable --disable-spell-checking --device-scale-factor=1 --font-cache-shared-mem-suffix=4540 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-gpu-compositing --channel="4540.0.1035544804\120055057" --rgsc_ipc_channel_name=rgsc_ipc_10d8_channel_1 /prefetch:673131151
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe" /r
"C:\Program Files (x86)\Fighters\Tray\FightersTray.exe"
"C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6792.1e8576a0.1200331431 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6792 "\\.\pipe\gecko-crash-server-pipe.6792" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe" --proxy-stub-channel=Flash1324.5EBFAF38.16390 --host-broker-channel=Flash1324.5EBFAF38.6366 --host-pid=1324 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe" --channel=4224.0038F56C.308844535 --proxy-stub-channel=Flash1324.5EBFAF38.16390 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files\Totalcmd\TOTALCMD.EXE"
"E:\Archiv\!_Instalace\Paint Shop Pro 7\PSP.EXE"
"E:\Html sklad\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Funmoods.job - C:\Users\BOEK~1\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE /Check
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000Core.job - C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000UA.job - C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.0]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.104.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.116.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.122.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.138.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.96.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.1.4]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.3.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69]
"Description"=6.0.12.69
"Path"=C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


C:\Program Files (x86)\Mozilla Firefox\components\
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
nprpjplug.dll
QuickTimePlugin.class

C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\
jid1-93WyvpgvxzGATw@jetpack
{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
{800b5000-a755-47e1-992b-48a1c1357f07}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\searchplugins\
askcom.xml
icqplugin.xml
Search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4DB74D06-491C-440D-305E-012400990F3E}]
Groove GFS Browser Helper - C:\Windows\SysWOW64\crredui.dll [2010-11-21 94208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-02-12 4220304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-29 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-29 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} -

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-01-09 609864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-01-12 2918656]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-01-27 169768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
""=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-09-28 842680]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2014-11-21 43816]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2014-11-21 43816]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe []
"Google Update"=C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-20 116648]
"AdobeBridge"= []
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"iLivid"=C:\Users\Božáček\AppData\Local\iLivid\iLivid.exe -autorun []
"uTorrent"=C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe [2015-04-29 1699920]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-03-25 31682144]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-01-20 60712]
"CTSysVol"=C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe [2005-10-31 57344]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-06 766208]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"Cisco AnyConnect Secure Mobility Agent for Windows"=C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2013-10-10 707984]
"CommonToolkitTray"=C:\Program Files (x86)\Fighters\Tray\FightersTray.exe [2014-10-10 1696288]
"SWPROguard"=C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe [2014-11-04 1262120]

C:\Users\Božáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-02-12 4220304]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux6"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux7"=wdmaud.drv
"aux8"=wdmaud.drv
"aux9"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-30 15:56:12 ----D---- C:\rsit
2015-04-29 15:38:08 ----SHD---- C:\Config.Msi
2015-04-28 18:25:23 ----D---- C:\ProgramData\clp
2015-04-28 18:25:14 ----D---- C:\Users\Božáček\AppData\Roaming\Fighters
2015-04-28 18:25:07 ----D---- C:\Program Files (x86)\Fighters
2015-04-28 18:24:43 ----D---- C:\ProgramData\Fighters
2015-04-28 18:24:43 ----D---- C:\ProgramData\Common Toolkit Suite
2015-04-28 17:34:55 ----D---- C:\Program Files (x86)\Yawcam
2015-04-28 17:23:41 ----D---- C:\Program Files\Rockstar Games
2015-04-22 15:03:44 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-04-19 07:58:07 ----D---- C:\Program Files (x86)\globalUpdate

======List of files/folders modified in the last 1 month======

2015-04-30 15:56:33 ----D---- C:\Windows\Prefetch
2015-04-30 15:56:24 ----D---- C:\Program Files\trend micro
2015-04-30 15:56:23 ----D---- C:\Windows\Temp
2015-04-30 15:55:56 ----D---- C:\Users\Božáček\AppData\Roaming\uTorrent
2015-04-30 15:48:33 ----D---- C:\Users\Božáček\AppData\Roaming\Skype
2015-04-30 15:30:13 ----D---- C:\Users\Božáček\AppData\Roaming\Dropbox
2015-04-30 15:29:44 ----D---- C:\Users\Božáček\AppData\Roaming\newnext.me
2015-04-29 19:19:10 ----D---- C:\Users\Božáček\AppData\Roaming\.minecraft
2015-04-29 17:15:37 ----D---- C:\Windows\system32\config
2015-04-29 17:05:23 ----D---- C:\Windows\Minidump
2015-04-29 17:05:20 ----D---- C:\Windows
2015-04-29 16:56:06 ----SHD---- C:\Windows\Installer
2015-04-29 16:55:06 ----HD---- C:\ProgramData
2015-04-29 16:53:26 ----D---- C:\Program Files (x86)\Battle.net
2015-04-29 15:38:47 ----D---- C:\Windows\SysWOW64
2015-04-29 15:38:47 ----D---- C:\ProgramData\Oracle
2015-04-29 15:38:39 ----D---- C:\Program Files (x86)\Java
2015-04-29 15:38:11 ----D---- C:\Program Files (x86)\Common Files
2015-04-29 15:37:06 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-04-28 18:25:15 ----D---- C:\Windows\system32\drivers
2015-04-28 18:25:15 ----D---- C:\Windows\system32\catroot
2015-04-28 18:25:07 ----AD---- C:\Program Files (x86)
2015-04-28 17:24:53 ----D---- C:\Program Files (x86)\Rockstar Games
2015-04-28 17:23:41 ----RD---- C:\Program Files
2015-04-28 17:23:02 ----RSD---- C:\Windows\assembly
2015-04-28 17:16:11 ----D---- C:\Windows\system32\Tasks
2015-04-28 15:17:13 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-04-26 17:48:59 ----D---- C:\Windows\System32
2015-04-26 17:48:59 ----D---- C:\Windows\inf
2015-04-26 17:48:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-26 10:07:19 ----A---- C:\Windows\NeroDigital.ini
2015-04-26 10:07:05 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-04-26 10:06:12 ----D---- C:\ProgramData\DAEMON Tools Lite
2015-04-24 20:47:05 ----D---- C:\Windows\Tasks
2015-04-24 19:07:25 ----D---- C:\Windows\winsxs
2015-04-20 11:33:29 ----D---- C:\ProgramData\Skype
2015-04-19 17:45:02 ----D---- C:\Users\Božáček\AppData\Roaming\DailyMagic
2015-04-19 17:45:02 ----D---- C:\ProgramData\DailyMagic
2015-04-19 07:31:08 ----SHD---- C:\$RECYCLE.BIN
2015-04-19 07:30:49 ----RD---- C:\Users
2015-04-15 19:37:21 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-15 18:59:13 ----D---- C:\Users\Božáček\AppData\Roaming\Mad Head Games
2015-04-11 13:48:23 ----D---- C:\Users\Božáček\AppData\Roaming\EleFun Games
2015-04-06 21:10:32 ----D---- C:\ProgramData\Origin
2015-04-05 09:02:33 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2015-04-02 09:53:05 ----D---- C:\Users\Božáček\AppData\Roaming\Apple Computer
2015-03-31 20:07:23 ----D---- C:\Windows\system32\drivers\etc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-10-07 270912]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-09-17 314016]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-12-21 170640]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 50624]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-09-17 43680]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-01-30 35344]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-12-06 13207552]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-12-06 626176]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 AVFSFilter;AVFSFilter; C:\Windows\system32\DRIVERS\avfsfilter.sys [2014-02-10 13720]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 34144]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 lvpepf64;Volume Adapter; C:\Windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 P17;SB 5.1 VX; C:\Windows\system32\drivers\P17.sys [2009-04-21 1288192]
R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
S3 acsock;acsock; C:\Windows\system32\DRIVERS\acsock64.sys [2013-10-10 112496]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2012-06-27 36328]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-12-12 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-12-12 27760]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-10-18 2957544]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2013-07-25 23040]
S3 NgFilter;Aventail VPN Filter; C:\Windows\system32\DRIVERS\ngfilter.sys []
S3 NgLog;Aventail VPN Logging; C:\Windows\system32\DRIVERS\nglog.sys []
S3 NgVpn;Aventail VPN Adapter; C:\Windows\system32\DRIVERS\ngvpn.sys []
S3 NgWfp;Aventail VPN Callout; C:\Windows\system32\DRIVERS\ngwfp.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 PAC7302;PC VGA Camer@ Plus; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-09-10 527360]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2011-07-06 367976]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2012-06-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2012-06-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 vpnva;Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64; C:\Windows\system32\DRIVERS\vpnva64-6.sys [2013-10-10 52080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-12-06 239616]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 AV Engine Scanning Service;AV Engine Scanning Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe []
R2 AV Watch Service;AV Watch Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe []
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 ciscod.exe;Cisco Security Service; C:\Program Files (x86)\Cisco\Cisco HostScan\bin\ciscod.exe [2013-10-10 64912]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2008-11-18 307200]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-01-12 810144]
R2 EslWireHelper;ESL Wire Helper Service; C:\Program Files\EslWire\service\WireHelperSvc.exe [2013-06-11 663056]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-01-09 1324104]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-01-09 795208]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-10-17 76152]
R2 Suite Service;Suite Service; C:\Program Files (x86)\Fighters\FighterSuiteService.exe [2014-11-02 1282592]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-02-17 5436176]
R2 vpnagent;Cisco AnyConnect Secure Mobility Agent; C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2013-10-10 558480]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-01-27 643880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-09 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15 268464]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-09 51648]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-11-02 79360]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2011-01-12 42360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-03-27 1930608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-07-12 542912]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-19 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Zdravim

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

OTL logfile created on: 1.5.2015 10:30:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Božáček\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 16,68% Memory free
10,00 Gb Paging File | 3,41 Gb Available in Paging File | 34,08% Paging File free
Paging file location(s): c:\pagefile.sys 4096 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 130,47 Gb Total Space | 37,44 Gb Free Space | 28,69% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 48,22 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive E: | 465,60 Gb Total Space | 42,43 Gb Free Space | 9,11% Space Free | Partition Type: NTFS
Drive F: | 7,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive G: | 1863,01 Gb Total Space | 1568,08 Gb Free Space | 84,17% Space Free | Partition Type: NTFS
Drive K: | 232,88 Gb Total Space | 5,35 Gb Free Space | 2,30% Space Free | Partition Type: NTFS

Computer Name: BOZAK-WIN7 | User Name: Božáček | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2015.05.01 10:28:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Božáček\Desktop\OTL.exe
PRC - [2015.04.22 15:03:48 | 000,376,944 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2015.04.15 19:37:21 | 001,892,528 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
PRC - [2015.04.14 03:42:36 | 043,376,600 | ---- | M] (Dropbox, Inc.) -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2015.02.17 11:05:26 | 005,436,176 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
PRC - [2014.11.21 14:20:52 | 000,043,816 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2014.11.04 13:55:34 | 001,262,120 | ---- | M] (SPAMfighter) -- C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe
PRC - [2014.11.02 23:04:02 | 001,282,592 | ---- | M] (SPAMfighter ApS) -- C:\Program Files (x86)\Fighters\FighterSuiteService.exe
PRC - [2014.10.10 22:56:54 | 001,696,288 | ---- | M] (SPAMfighter ApS) -- C:\Program Files (x86)\Fighters\Tray\FightersTray.exe
PRC - [2014.07.14 19:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2014.07.14 19:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2014.02.10 10:09:28 | 002,009,912 | ---- | M] (Preventon Technologies Limited) -- C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVScanningService.exe
PRC - [2014.02.10 10:09:28 | 000,400,528 | ---- | M] (Preventon Technologies Limited) -- C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVWatchService.exe
PRC - [2013.11.01 16:26:29 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013.10.10 18:47:56 | 000,707,984 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
PRC - [2013.10.10 18:47:40 | 000,558,480 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
PRC - [2013.10.10 18:37:16 | 000,064,912 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Cisco\Cisco HostScan\bin\ciscod.exe
PRC - [2013.04.12 10:13:24 | 000,457,208 | ---- | M] () -- C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe
PRC - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) -- C:\Program Files (x86)\PDF Architect\HelperService.exe
PRC - [2012.09.28 20:18:24 | 000,842,680 | ---- | M] (Samsung) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2011.08.02 09:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2011.01.12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2010.11.21 05:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2008.11.18 13:15:30 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2006.12.19 09:30:26 | 000,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\SysWOW64\IoctlSvc.exe
PRC - [2006.11.03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\PAC7302\Monitor.exe
PRC - [2005.10.31 11:51:52 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe


========== Modules (No Company Name) ==========

MOD - [2015.05.01 10:24:52 | 000,043,008 | ---- | M] () -- c:\Users\Božáček\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpserrzq.dll
MOD - [2015.04.15 19:37:20 | 016,863,920 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll
MOD - [2015.03.04 23:45:30 | 000,865,280 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
MOD - [2015.03.04 23:45:30 | 000,750,080 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\libGLESv2.dll
MOD - [2015.03.04 23:45:30 | 000,200,704 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
MOD - [2015.03.04 23:45:30 | 000,047,616 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\libEGL.dll
MOD - [2015.02.17 10:35:00 | 000,764,416 | ---- | M] () -- C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.01.20 23:35:44 | 001,044,776 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013.10.10 18:48:40 | 000,063,376 | ---- | M] () -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
MOD - [2013.04.12 10:13:24 | 000,457,208 | ---- | M] () -- C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2013.03.29 13:37:34 | 000,059,384 | ---- | M] () -- C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\22365libfoxloader.dll
MOD - [2013.03.25 16:39:52 | 000,894,968 | ---- | M] () -- C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF


========== Services (SafeList) ==========

SRV:64bit: - [2014.10.17 18:31:53 | 000,076,152 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - [2013.12.06 22:52:10 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.06.11 11:52:08 | 000,663,056 | ---- | M] () [Auto | Running] -- C:\Program Files\EslWire\service\WireHelperSvc.exe -- (EslWireHelper)
SRV:64bit: - [2011.01.12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2011.01.12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2015.04.15 19:37:21 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015.03.27 19:03:30 | 001,930,608 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015.02.18 19:11:32 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.02.17 11:05:26 | 005,436,176 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2014.11.02 23:04:02 | 001,282,592 | ---- | M] (SPAMfighter ApS) [Auto | Running] -- C:\Program Files (x86)\Fighters\FighterSuiteService.exe -- (Suite Service)
SRV - [2014.07.14 19:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014.07.14 19:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2014.07.12 02:53:24 | 000,542,912 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.02.10 10:09:28 | 002,009,912 | ---- | M] () [Auto | Running] -- C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe -- (AV Engine Scanning Service)
SRV - [2014.02.10 10:09:28 | 000,400,528 | ---- | M] () [Auto | Running] -- C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe -- (AV Watch Service)
SRV - [2013.11.01 16:26:29 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013.10.10 18:47:40 | 000,558,480 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)
SRV - [2013.10.10 18:37:16 | 000,064,912 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Cisco\Cisco HostScan\bin\ciscod.exe -- (ciscod.exe)
SRV - [2013.02.04 18:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Program Files (x86)\PDF Architect\ConversionService.exe -- (PDF Architect Service)
SRV - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Program Files (x86)\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)
SRV - [2012.07.09 01:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2011.11.02 18:23:34 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.11.18 13:15:30 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2006.12.19 09:30:26 | 000,081,920 | ---- | M] (Prolific Technology Inc.) [Auto | Running] -- C:\Windows\SysWOW64\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2015.01.30 16:48:59 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2014.08.15 23:35:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2014.02.10 10:09:32 | 000,013,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avfsfilter.sys -- (AVFSFilter)
DRV:64bit: - [2013.12.06 23:52:14 | 013,207,552 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.12.06 22:21:44 | 000,626,176 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.10.10 18:31:36 | 000,052,080 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpnva64-6.sys -- (vpnva)
DRV:64bit: - [2013.10.10 18:29:28 | 000,112,496 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acsock64.sys -- (acsock)
DRV:64bit: - [2013.09.24 16:53:50 | 000,094,208 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2013.07.25 16:53:46 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:64bit: - [2012.12.12 18:26:51 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2012.12.12 18:26:51 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012.09.20 06:35:36 | 000,203,104 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2012.09.20 06:35:36 | 000,102,368 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2012.08.21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012.06.27 10:37:56 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2012.06.27 10:37:56 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2012.06.27 10:37:56 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2012.06.27 10:37:56 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2012.06.27 10:37:56 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2011.10.07 17:14:10 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.09.17 10:25:53 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2011.09.17 10:25:52 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2011.08.17 09:58:26 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011.08.17 09:58:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011.08.17 09:58:20 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.08.17 09:58:16 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011.07.06 18:12:50 | 000,367,976 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2011.03.21 21:22:06 | 000,452,200 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.12.21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2010.12.21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2010.12.21 13:47:38 | 000,170,640 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2010.12.21 13:47:38 | 000,050,624 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2010.12.21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:64bit: - [2010.11.21 05:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.11.21 05:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.04.21 15:12:50 | 001,288,192 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\P17.sys -- (P17)
DRV:64bit: - [2008.07.26 15:26:34 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2008.07.26 15:25:48 | 000,790,424 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2008.07.26 15:22:34 | 002,624,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LV302V64.SYS -- (PID_PEPI)
DRV:64bit: - [2008.07.26 15:22:22 | 000,015,768 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lv302a64.sys -- (lvpepf64)
DRV:64bit: - [2008.06.27 08:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV:64bit: - [2007.09.10 08:50:26 | 000,527,360 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PAC7302.SYS -- (PAC7302)
DRV:64bit: - [2007.05.14 17:06:18 | 000,027,520 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2005.09.23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=ironpu ... 1298386547
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.funmoods.com/results.php?f ... 1298386547
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=ironpu ... 1298386547
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{5139309D-1847-A575-8AD1-33AD27445189}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.funmoods.com/results.php?f ... 1298386547


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = http://eu.ask.com/?l=dis&o=14597
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.seznam.cz/ [binary data]
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=ironpu ... 1298386547
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes,Backup.Old.DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{5139309D-1847-A575-8AD1-33AD27445189}: "URL" = http://www.google.com/search?q={searchT ... SA_csCZ449
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.funmoods.com/results.php?f ... 1298386547
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\SearchScopes\{D9C30C36-2228-4596-B945-ADF04C5D557B}: "URL" = http://websearch.ask.com/redirect?clien ... 86C9330807
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-21-4021130684-3837087373-3470918577-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..backup.old.browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B2d3fbcf7-be69-4433-8858-c621a8d0e58d%7D:6.0.0.12757
FF - prefs.js..extensions.enabledAddons: jid1-93WyvpgvxzGATw%40jetpack:1001.8.477
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:37.0.2


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.5.1: C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.122.0: C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.138.0: C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.96.0: C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.4: C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.1: C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.5.1: C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.6.2: C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2: C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Božáček\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Božáček\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Božáček\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2011.09.04 14:21:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013.02.22 10:16:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 37.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2015.04.22 15:03:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 37.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2015.04.22 15:03:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011.09.04 14:21:25 | 000,000,000 | ---D | M]

[2011.09.04 15:27:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Extensions
[2015.04.24 18:30:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions
[2015.04.12 12:01:32 | 000,000,000 | ---D | M] (Widevine Media Optimizer) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
[2012.07.25 17:08:07 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2014.06.04 16:46:26 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2015.04.24 18:30:05 | 000,000,000 | ---D | M] (jid193WyvpgvxzGATwjetpack) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\jid1-93WyvpgvxzGATw@jetpack
[2013.08.08 14:07:04 | 000,249,988 | ---- | M] () (No name found) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\gophoto@gophoto.it.xpi
[2014.12.23 15:10:14 | 000,025,976 | ---- | M] () (No name found) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\{74904424-ec46-4d61-bd52-8b528a96f6d1}.xpi
[2015.04.01 18:29:08 | 000,970,672 | ---- | M] () (No name found) -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.08.08 15:04:37 | 000,002,322 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\searchplugins\askcom.xml
[2015.04.30 12:36:31 | 000,001,086 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\searchplugins\icqplugin.xml
[2012.08.24 12:57:54 | 000,002,347 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Mozilla\Firefox\Profiles\cyrw37cg.default\searchplugins\Search.xml
[2015.04.22 15:03:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2015.04.22 15:03:48 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\USERS\BOżáčEK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CYRW37CG.DEFAULT\EXTENSIONS\{2D3FBCF7-BE69-4433-8858-C621A8D0E58D}
File not found (No name found) -- C:\USERS\BOżáčEK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\CYRW37CG.DEFAULT\EXTENSIONS\JID1-93WYVPGVXZGATW@JETPACK

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Božáček\AppData\Local\Google\Chrome\Application\42.0.2311.90\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Božáček\AppData\Local\Google\Chrome\Application\42.0.2311.90\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Božáček\AppData\Local\Google\Chrome\Application\42.0.2311.90\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh\2.3.8_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.14_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_1\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnlfbokmiehpnhgdjlmedakkchfldmj\14071.4778.7675_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik\2.2015.427.11450_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.6_0\
CHR - Extension: No name found = C:\Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015.02.18 20:03:38 | 000,446,676 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.123fporn.info
O1 - Hosts: 15336 more lines...
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Groove GFS Browser Helper) - {4DB74D06-491C-440D-305E-012400990F3E} - C:\Windows\SysWOW64\crredui.dll ()
O2 - BHO: (no name) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKLM\..\Toolbar: (PDF Architect Toolbar) - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
O3 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [CommonToolkitTray] C:\Program Files (x86)\Fighters\Tray\FightersTray.exe (SPAMfighter ApS)
O4 - HKLM..\Run: [CTSysVol] C:\Program Files (x86)\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [SWPROguard] C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe (SPAMfighter)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe File not found
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [iLivid] "C:\Users\Božáček\AppData\Local\iLivid\iLivid.exe" -autorun File not found
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [NextLive] C:\Users\Božáček\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [uTorrent] C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe ()
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1004..\Run: [cz.seznam.software.autoupdate] C:\Users\GTA V\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1004..\Run: [cz.seznam.software.szndesktop] C:\Users\GTA V\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Božáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0 [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
O7 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe File not found
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKU\S-1-5-21-4021130684-3837087373-3470918577-1000\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 11.45.2)
O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 1.8.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 11.45.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Creative Software AutoUpdate 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9BEC1AFF-2F08-4EEC-9912-7F4203BDCDE3}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B120F7A6-056E-45A7-A7F2-099DF475BA93}: DhcpNameServer = 172.20.10.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.01.04 03:09:14 | 000,000,050 | R--- | M] () - F:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{22eeb4c5-d26c-11e2-be2f-0019dbb2d703}\Shell - "" = AutoRun
O33 - MountPoints2\{22eeb4c5-d26c-11e2-be2f-0019dbb2d703}\Shell\AutoRun\command - "" = H:\Startme.exe
O33 - MountPoints2\{79d7b76e-d6d9-11e0-aa02-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{79d7b76e-d6d9-11e0-aa02-806e6f6e6963}\Shell\AutoRun\command - "" = F:\setup.exe -- [2015.02.25 15:52:24 | 001,185,160 | R--- | M] (Rockstar Games)
O33 - MountPoints2\{ac8d7bc0-01b1-11e4-bd7d-0019dbb2d703}\Shell - "" = AutoRun
O33 - MountPoints2\{ac8d7bc0-01b1-11e4-bd7d-0019dbb2d703}\Shell\AutoRun\command - "" = H:\setup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Dexter_setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: vidc.i420 - lvcod64.dll (Logitech Inc.)
Drivers32:64bit: vidc.XVID - xvidvfw.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codec - C:\Windows\SysWow64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIV3 - C:\Windows\SysWow64\DivXc32.dll (Hacked with Joy !)
Drivers32: vidc.DIV4 - C:\Windows\SysWow64\DivXc32f.dll (Hacked with Joy !)
Drivers32: VIDC.DIVX - C:\Windows\SysWow64\divx.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: vidc.i420 - C:\Windows\SysWow64\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.iv50 - C:\Windows\SysWow64\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2015.05.01 10:28:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Božáček\Desktop\OTL.exe
[2015.04.30 15:56:12 | 000,000,000 | ---D | C] -- C:\rsit
[2015.04.29 16:55:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
[2015.04.29 15:38:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015.04.29 15:38:08 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2015.04.28 18:25:23 | 000,000,000 | ---D | C] -- C:\ProgramData\clp
[2015.04.28 18:25:14 | 000,000,000 | ---D | C] -- C:\Users\Božáček\AppData\Roaming\Fighters
[2015.04.28 18:25:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters
[2015.04.28 18:25:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Fighters
[2015.04.28 18:25:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Common Toolkit Suite
[2015.04.28 18:24:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Fighters
[2015.04.28 18:24:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Common Toolkit Suite
[2015.04.28 17:34:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yawcam
[2015.04.28 17:34:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yawcam
[2015.04.28 17:23:41 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2015.04.28 17:16:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2013.10.12 12:43:52 | 000,784,840 | ---- | C] (Google Inc.) -- C:\Program Files (x86)\GoogleEarthSetup.exe
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2015.05.01 10:33:54 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.05.01 10:28:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Božáček\Desktop\OTL.exe
[2015.05.01 10:24:18 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015.05.01 10:22:01 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015.05.01 10:06:00 | 000,000,970 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000UA.job
[2015.05.01 09:47:00 | 000,000,298 | ---- | M] () -- C:\Windows\tasks\Funmoods.job
[2015.05.01 09:37:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015.05.01 08:58:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.04.30 21:13:20 | 000,002,388 | ---- | M] () -- C:\Users\Božáček\Desktop\Google Chrome.lnk
[2015.04.30 15:49:50 | 000,280,938 | ---- | M] () -- C:\Users\Božáček\Desktop\Obrázek2.jpg
[2015.04.30 15:49:22 | 000,375,622 | ---- | M] () -- C:\Users\Božáček\Desktop\Obrázek1.jpg
[2015.04.30 12:06:00 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000Core.job
[2015.04.29 16:55:52 | 000,000,684 | ---- | M] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2015.04.29 15:37:06 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015.04.28 18:25:13 | 000,001,970 | ---- | M] () -- C:\Users\Public\Desktop\SPYWAREfighter.lnk
[2015.04.28 17:16:03 | 000,000,474 | ---- | M] () -- C:\Users\Public\Desktop\Grand Theft Auto V.lnk
[2015.04.26 17:48:59 | 001,588,650 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015.04.26 17:48:59 | 000,670,678 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015.04.26 17:48:59 | 000,655,894 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015.04.26 17:48:59 | 000,141,792 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015.04.26 17:48:59 | 000,122,236 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015.04.26 10:09:09 | 000,001,151 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2015.04.26 10:08:55 | 000,001,033 | ---- | M] () -- C:\Users\Božáček\Desktop\Dropbox.lnk
[2015.04.26 10:07:19 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2015.04.26 10:07:05 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2015.04.26 10:07:05 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2015.05.01 10:33:54 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.04.30 15:49:50 | 000,280,938 | ---- | C] () -- C:\Users\Božáček\Desktop\Obrázek2.jpg
[2015.04.30 15:49:22 | 000,375,622 | ---- | C] () -- C:\Users\Božáček\Desktop\Obrázek1.jpg
[2015.04.29 16:55:52 | 000,000,684 | ---- | C] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2015.04.28 18:25:13 | 000,001,970 | ---- | C] () -- C:\Users\Public\Desktop\SPYWAREfighter.lnk
[2015.04.28 17:16:03 | 000,000,474 | ---- | C] () -- C:\Users\Public\Desktop\Grand Theft Auto V.lnk
[2015.03.18 18:32:36 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2015.03.18 18:32:36 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2014.04.09 20:19:58 | 001,384,924 | ---- | C] () -- C:\Users\Božáček\Zahrada pana Lindra pičo.zip
[2014.02.17 16:40:03 | 000,000,132 | ---- | C] () -- C:\Users\Božáček\AppData\Roaming\Filtr IIIExport Adobe CS6 – předvolby
[2014.01.13 21:23:57 | 000,000,218 | ---- | C] () -- C:\Users\Božáček\AppData\Local\recently-used.xbel
[2013.12.06 17:44:26 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2013.09.22 15:47:03 | 000,000,185 | ---- | C] () -- C:\Users\Božáček\AppData\Roaming\WB.CFG
[2013.08.31 01:47:50 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.08.31 01:47:50 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.06.06 14:33:19 | 000,086,016 | ---- | C] () -- C:\Windows\SysWow64\QL57F.DLL
[2013.05.02 16:01:01 | 001,800,750 | ---- | C] () -- C:\Program Files (x86)\net2ftp-1367503222.zip
[2012.11.03 12:58:36 | 000,000,001 | ---- | C] () -- C:\Users\Božáček\AppData\Local\llftool.4.25.agreement
[2012.08.24 12:57:32 | 000,031,465 | ---- | C] () -- C:\Users\Božáček\AppData\Local\funmoods.crx
[2012.08.08 15:30:09 | 000,005,632 | ---- | C] () -- C:\Users\Božáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.01.05 13:46:50 | 000,007,644 | ---- | C] () -- C:\Users\Božáček\AppData\Local\Resmon.ResmonCfg
[2011.09.04 15:14:54 | 000,001,024 | ---- | C] () -- C:\Users\Božáček\.rnd

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2010.11.21 05:23:55 | 014,174,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010.11.21 05:24:02 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015.04.29 19:19:10 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\.minecraft
[2014.11.26 17:50:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\11bitstudios
[2015.01.28 19:02:22 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\4 Friends Games
[2013.05.11 19:14:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\8floor
[2013.01.07 10:59:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ACD Systems
[2012.03.22 17:59:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar
[2011.12.22 19:26:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar Entertainment
[2011.12.14 20:45:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar Stargaze
[2014.11.23 18:22:30 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\AlawarEntertainment
[2012.01.11 14:45:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Amaranth Games
[2014.05.05 17:57:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Ambers Tales
[2012.02.17 16:14:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Amulet_of_time
[2013.12.30 15:55:59 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Argali
[2014.04.29 17:30:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Artifex Mundi
[2013.02.20 21:53:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ArtifexMundi
[2013.06.04 19:12:34 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Artogon
[2015.03.18 19:16:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\AVI ReComp
[2011.10.19 18:17:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\avidemux
[2011.12.01 11:47:59 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Awem
[2014.05.07 20:33:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Battle.net
[2011.11.26 12:50:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Big Fish Games
[2013.12.23 15:44:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Big Top Games
[2015.03.16 14:48:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\BlamGames
[2013.10.08 16:37:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\blg
[2013.12.09 20:12:28 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Blue Tea Games
[2014.06.26 16:42:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Boolat Games
[2014.11.02 15:44:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Boomzap
[2014.05.03 19:59:28 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Brave Giant
[2011.10.20 14:42:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\casualArts
[2013.01.14 12:26:17 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\cerasus.media
[2013.08.18 13:33:38 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Chayowo Games
[2014.08.11 10:52:34 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Cisco
[2011.09.06 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DAEMON Tools Lite
[2015.04.19 17:45:02 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DailyMagic
[2014.01.15 19:50:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dango
[2012.03.16 17:19:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dark Blue Games
[2014.01.22 21:26:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Deep Shadows
[2014.01.13 21:23:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\deluge
[2011.10.31 11:38:17 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DieselPuppet
[2012.01.12 12:29:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Digital Quarter
[2012.04.08 16:24:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DikobrazGames
[2015.02.24 14:32:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DominiGames
[2015.05.01 10:25:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dropbox
[2015.03.14 18:49:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Eipix
[2015.04.11 13:48:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\EleFun Games
[2015.01.19 12:51:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Elephant Games
[2014.07.01 18:39:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Enki Games
[2015.03.25 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ERS Game Studios
[2011.09.04 14:21:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ESET
[2014.06.08 14:44:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Fenomen Games
[2013.11.27 12:32:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\FGS
[2015.04.28 18:25:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Fighters
[2015.01.18 20:30:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Five-BN Games
[2011.12.09 17:42:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\flashInstall
[2012.03.17 17:47:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\FlowerOfImmortality
[2013.07.11 12:14:35 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Freeze Tag
[2012.02.23 21:22:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Friday's games
[2013.10.07 17:24:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Friendly Cactus
[2011.10.19 10:39:13 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Frogwares
[2012.01.26 17:48:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Funlinker
[2013.02.12 17:24:26 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Funmoods
[2012.05.17 17:04:37 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameDevo
[2011.11.02 11:29:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameHouse
[2012.03.27 10:32:50 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameInvest
[2012.04.01 13:52:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameMill Entertainment
[2011.09.04 13:07:07 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GHISLER
[2011.10.04 16:50:00 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GO Games
[2014.04.02 14:41:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Goblinz
[2013.06.23 18:31:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gogii
[2013.04.28 18:36:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gogii Games
[2014.10.06 17:27:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GrandMA Studios
[2015.03.13 15:41:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Graphium
[2012.10.04 12:50:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GuardiansOfMagic
[2011.10.21 15:42:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GUIDE The Dark Hills of Cherai2
[2015.03.10 15:02:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gunnar Games
[2013.05.22 10:52:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\HBM-Games
[2014.08.15 17:19:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hidden Objects LesMiserables2
[2015.02.02 20:25:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hot Lava Games
[2013.11.12 20:08:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\HotLava
[2013.03.20 12:03:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hullabu
[2014.07.15 13:09:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Icarus Games
[2012.10.22 15:54:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Inertia Game Studios
[2013.03.22 17:01:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\iSpy
[2015.02.15 15:21:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\java
[2012.09.10 13:45:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Jetdogs Studios
[2012.10.18 11:00:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\JoyBits
[2011.10.21 12:55:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Kalypso Media
[2013.11.07 11:53:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Legacy Games
[2014.07.13 18:05:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\LittleGamesCompany
[2013.07.11 20:31:35 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\LolClient
[2015.04.15 18:59:13 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mad Head Games
[2013.08.13 12:58:24 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MagicIndie
[2015.03.01 16:12:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mariaglorum
[2013.02.27 13:02:47 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Maximize Games
[2013.06.30 16:44:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MediaArt
[2012.04.19 18:06:32 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Meridian93
[2015.01.21 18:23:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MetaQuotes
[2013.07.04 17:20:47 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Milestone
[2013.11.29 18:49:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MultiBit
[2012.01.30 15:41:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MumboJumbo
[2012.03.26 15:04:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\My Games
[2014.09.11 18:44:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MysteryTag
[2012.06.25 16:48:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mystic Diary - Missing Pages Strategy Guide
[2012.03.05 21:07:52 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Natural Threat.Ominous Shores
[2015.05.01 10:24:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\newnext.me
[2013.02.22 10:15:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\OpenCandy
[2013.05.09 17:54:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Organic 2 Digital
[2013.06.11 14:40:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Origin
[2014.11.19 12:17:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Orneon
[2013.02.22 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PDF Architect
[2013.02.22 10:16:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\pdfforge
[2012.09.06 11:13:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Phantasmat_bf_ce1
[2015.02.27 16:40:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\pivot-games
[2013.03.11 20:49:09 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayFavoriteGames
[2011.12.22 19:05:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayFirst
[2011.10.29 14:43:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayPond
[2014.07.06 14:06:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayWay
[2013.11.01 16:38:12 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\poclbm
[2011.09.06 17:13:41 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PunkBuster
[2014.05.03 19:21:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PuzzleLab
[2011.11.08 14:12:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Red Dot
[2013.03.31 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\REXARD
[2013.07.01 09:18:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Riot Games
[2012.10.06 15:07:03 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Samsung
[2014.02.06 20:51:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Seven Sails
[2014.08.26 20:10:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Seznam.cz
[2014.06.11 16:21:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ShamanGS
[2013.07.30 14:44:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Shifters Anticheat
[2013.04.14 18:30:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Silverback Games
[2012.08.08 19:09:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Silverback Productions
[2012.07.04 17:42:37 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Skunk Studios
[2013.06.14 19:09:22 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SMIGames
[2012.08.31 13:16:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Specialbit
[2012.02.01 13:46:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SpinTop Games
[2014.01.18 13:51:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014.11.13 16:16:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Steam
[2012.12.18 14:41:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SulusGames
[2011.09.24 13:18:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Systweak
[2014.02.17 15:21:09 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\T1 Games
[2013.06.26 20:56:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\tabagames
[2012.09.24 16:03:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tales of Terror - Crimson Dawn Strategy Guide
[2014.01.07 13:32:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TeamViewer
[2012.09.03 10:57:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Theatre of Shadows As You Wish Strategy Guide
[2012.11.25 14:03:10 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Theta
[2014.07.21 18:40:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TikisLab
[2014.08.13 18:11:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Top Evidence
[2015.03.21 11:43:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tropico 5
[2013.02.22 10:17:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TuneUp Software
[2013.05.01 10:37:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tunngle
[2012.09.10 10:31:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TWODESPERADOS
[2012.03.14 14:42:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Ubisoft
[2015.02.15 15:11:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Unity
[2011.10.06 15:35:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Urban Legends The Maze Strategy Guide
[2014.09.03 18:08:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Urchin
[2015.05.01 10:25:38 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\uTorrent
[2014.09.24 17:17:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Vast Studios
[2015.01.15 20:18:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\VendelGAMES
[2011.09.26 17:19:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\VitySoft
[2011.10.20 15:38:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Vogat Interactive
[2013.05.14 18:54:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\YoudaGames
[2015.04.30 16:49:09 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\Battle.net
[2015.04.19 07:32:55 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\ESET
[2015.04.29 12:23:07 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\Fighters
[2015.04.19 07:34:01 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\GHISLER
[2015.04.27 21:34:18 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\Mumble
[2015.05.01 09:04:02 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\Seznam.cz
[2015.04.30 13:36:23 | 000,000,000 | ---D | M] -- C:\Users\GTA V\AppData\Roaming\Tropico 5

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,596 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.05.02 20:44:35 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.05.02 20:44:36 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.07.01 13:37:10 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.07.10 11:58:11 | 000,000,918 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000Core.job
[2013.07.10 11:58:11 | 000,000,970 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000UA.job
[2014.02.08 16:47:16 | 000,000,298 | ---- | C] () -- C:\Windows\Tasks\Funmoods.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SysWOW64\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2015.04.29 19:19:10 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\.minecraft
[2014.11.26 17:50:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\11bitstudios
[2015.01.28 19:02:22 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\4 Friends Games
[2013.05.11 19:14:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\8floor
[2013.01.07 10:59:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ACD Systems
[2014.01.18 13:51:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Adobe
[2012.03.22 17:59:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar
[2011.12.22 19:26:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar Entertainment
[2011.12.14 20:45:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Alawar Stargaze
[2014.11.23 18:22:30 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\AlawarEntertainment
[2012.01.11 14:45:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Amaranth Games
[2014.05.05 17:57:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Ambers Tales
[2012.02.17 16:14:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Amulet_of_time
[2015.04.02 09:53:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Apple Computer
[2013.12.30 15:55:59 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Argali
[2014.04.29 17:30:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Artifex Mundi
[2013.02.20 21:53:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ArtifexMundi
[2013.06.04 19:12:34 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Artogon
[2011.10.28 13:43:13 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ATI
[2015.03.18 19:16:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\AVI ReComp
[2011.10.19 18:17:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\avidemux
[2011.12.01 11:47:59 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Awem
[2014.05.07 20:33:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Battle.net
[2011.11.26 12:50:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Big Fish Games
[2013.12.23 15:44:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Big Top Games
[2015.03.16 14:48:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\BlamGames
[2013.10.08 16:37:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\blg
[2013.12.09 20:12:28 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Blue Tea Games
[2014.06.26 16:42:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Boolat Games
[2014.11.02 15:44:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Boomzap
[2014.05.03 19:59:28 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Brave Giant
[2013.06.06 14:48:55 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Brother
[2011.10.20 14:42:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\casualArts
[2013.01.14 12:26:17 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\cerasus.media
[2013.08.18 13:33:38 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Chayowo Games
[2014.08.11 10:52:34 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Cisco
[2011.11.02 18:16:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Creative
[2011.09.06 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DAEMON Tools Lite
[2015.04.19 17:45:02 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DailyMagic
[2014.01.15 19:50:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dango
[2012.03.16 17:19:54 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dark Blue Games
[2014.01.22 21:26:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Deep Shadows
[2014.01.13 21:23:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\deluge
[2011.10.31 11:38:17 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DieselPuppet
[2012.01.12 12:29:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Digital Quarter
[2012.04.08 16:24:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DikobrazGames
[2011.10.21 17:43:47 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DivX
[2015.02.24 14:32:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\DominiGames
[2015.05.01 10:25:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Dropbox
[2015.03.14 18:49:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Eipix
[2015.04.11 13:48:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\EleFun Games
[2015.01.19 12:51:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Elephant Games
[2014.07.01 18:39:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Enki Games
[2015.03.25 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ERS Game Studios
[2011.09.04 14:21:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ESET
[2014.06.08 14:44:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Fenomen Games
[2013.11.27 12:32:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\FGS
[2015.04.28 18:25:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Fighters
[2015.01.18 20:30:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Five-BN Games
[2011.12.09 17:42:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\flashInstall
[2012.03.17 17:47:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\FlowerOfImmortality
[2013.07.11 12:14:35 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Freeze Tag
[2012.02.23 21:22:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Friday's games
[2013.10.07 17:24:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Friendly Cactus
[2011.10.19 10:39:13 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Frogwares
[2012.01.26 17:48:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Funlinker
[2013.02.12 17:24:26 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Funmoods
[2012.05.17 17:04:37 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameDevo
[2011.11.02 11:29:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameHouse
[2012.03.27 10:32:50 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameInvest
[2012.04.01 13:52:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GameMill Entertainment
[2011.09.04 13:07:07 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GHISLER
[2011.10.04 16:50:00 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GO Games
[2014.04.02 14:41:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Goblinz
[2013.06.23 18:31:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gogii
[2013.04.28 18:36:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gogii Games
[2014.10.06 17:27:23 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GrandMA Studios
[2015.03.13 15:41:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Graphium
[2012.10.04 12:50:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GuardiansOfMagic
[2011.10.21 15:42:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\GUIDE The Dark Hills of Cherai2
[2015.03.10 15:02:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Gunnar Games
[2013.05.22 10:52:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\HBM-Games
[2014.08.15 17:19:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hidden Objects LesMiserables2
[2015.02.02 20:25:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hot Lava Games
[2013.11.12 20:08:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\HotLava
[2013.03.20 12:03:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Hullabu
[2014.07.15 13:09:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Icarus Games
[2011.09.04 12:31:19 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Identities
[2012.10.22 15:54:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Inertia Game Studios
[2011.09.05 15:12:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\InstallShield
[2011.09.24 13:14:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Ipswitch
[2013.03.22 17:01:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\iSpy
[2015.02.15 15:21:21 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\java
[2012.09.10 13:45:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Jetdogs Studios
[2012.10.18 11:00:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\JoyBits
[2011.10.21 12:55:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Kalypso Media
[2012.01.04 18:29:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Lavasoft
[2013.11.07 11:53:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Legacy Games
[2014.07.13 18:05:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\LittleGamesCompany
[2013.07.11 20:31:35 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\LolClient
[2011.09.04 13:51:24 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Macromedia
[2015.04.15 18:59:13 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mad Head Games
[2013.08.13 12:58:24 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MagicIndie
[2012.07.22 15:19:55 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Malwarebytes
[2015.03.01 16:12:49 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mariaglorum
[2013.02.27 13:02:47 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Maximize Games
[2010.11.21 11:38:07 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Media Center Programs
[2011.09.05 17:28:58 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Media Player Classic
[2013.06.30 16:44:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MediaArt
[2012.04.19 18:06:32 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Meridian93
[2015.01.21 18:23:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MetaQuotes
[2015.01.28 22:20:03 | 000,000,000 | --SD | M] -- C:\Users\Božáček\AppData\Roaming\Microsoft
[2013.07.04 17:20:47 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Milestone
[2011.09.04 15:27:17 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mozilla
[2013.11.29 18:49:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MultiBit
[2012.01.30 15:41:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MumboJumbo
[2012.03.26 15:04:44 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\My Games
[2014.09.11 18:44:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\MysteryTag
[2012.06.25 16:48:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Mystic Diary - Missing Pages Strategy Guide
[2012.03.05 21:07:52 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Natural Threat.Ominous Shores
[2011.09.08 11:05:35 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Nero
[2015.05.01 10:24:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\newnext.me
[2013.02.22 10:15:57 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\OpenCandy
[2013.05.09 17:54:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Organic 2 Digital
[2013.06.11 14:40:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Origin
[2014.11.19 12:17:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Orneon
[2013.02.22 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PDF Architect
[2013.02.22 10:16:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\pdfforge
[2012.09.06 11:13:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Phantasmat_bf_ce1
[2015.02.27 16:40:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\pivot-games
[2013.03.11 20:49:09 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayFavoriteGames
[2011.12.22 19:05:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayFirst
[2011.10.29 14:43:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayPond
[2014.07.06 14:06:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PlayWay
[2013.11.01 16:38:12 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\poclbm
[2013.11.26 20:50:30 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PSpad
[2011.09.06 17:13:41 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PunkBuster
[2014.05.03 19:21:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\PuzzleLab
[2011.09.09 12:25:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Real
[2011.11.08 14:12:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Red Dot
[2013.03.31 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\REXARD
[2013.07.01 09:18:20 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Riot Games
[2012.10.06 15:07:03 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Samsung
[2011.10.21 17:20:19 | 000,000,000 | RH-D | M] -- C:\Users\Božáček\AppData\Roaming\SecuROM
[2014.02.06 20:51:01 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Seven Sails
[2014.08.26 20:10:46 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Seznam.cz
[2014.06.11 16:21:36 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\ShamanGS
[2013.07.30 14:44:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Shifters Anticheat
[2013.04.14 18:30:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Silverback Games
[2012.08.08 19:09:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Silverback Productions
[2012.07.04 17:42:37 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Skunk Studios
[2015.05.01 10:25:50 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Skype
[2011.10.06 20:37:10 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\skypePM
[2013.06.14 19:09:22 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SMIGames
[2012.08.31 13:16:56 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Specialbit
[2012.02.01 13:46:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SpinTop Games
[2014.01.18 13:51:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014.11.13 16:16:11 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Steam
[2012.12.18 14:41:45 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\SulusGames
[2014.05.04 12:19:39 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Sunward Games
[2011.09.24 13:18:31 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Systweak
[2014.02.17 15:21:09 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\T1 Games
[2013.06.26 20:56:43 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\tabagames
[2012.09.24 16:03:25 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tales of Terror - Crimson Dawn Strategy Guide
[2014.01.07 13:32:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TeamViewer
[2012.09.03 10:57:51 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Theatre of Shadows As You Wish Strategy Guide
[2012.11.25 14:03:10 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Theta
[2014.07.21 18:40:29 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TikisLab
[2014.08.13 18:11:33 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Top Evidence
[2015.03.21 11:43:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tropico 5
[2013.02.22 10:17:40 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TuneUp Software
[2013.05.01 10:37:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Tunngle
[2012.09.10 10:31:15 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\TWODESPERADOS
[2012.03.14 14:42:08 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Ubisoft
[2015.02.15 15:11:14 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Unity
[2011.10.06 15:35:04 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Urban Legends The Maze Strategy Guide
[2014.09.03 18:08:48 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Urchin
[2015.05.01 10:25:38 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\uTorrent
[2014.09.24 17:17:18 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Vast Studios
[2015.01.15 20:18:42 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\VendelGAMES
[2011.09.26 17:19:53 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\VitySoft
[2011.10.20 15:38:27 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\Vogat Interactive
[2011.09.05 16:31:34 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\WinRAR
[2013.05.14 18:54:05 | 000,000,000 | ---D | M] -- C:\Users\Božáček\AppData\Roaming\YoudaGames

< %APPDATA%\*.exe /s >
[2015.04.14 03:42:36 | 043,376,600 | ---- | M] (Dropbox, Inc.) -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2015.04.14 03:47:38 | 000,265,856 | ---- | M] (Dropbox, Inc.) -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2015.04.14 03:42:40 | 001,032,496 | ---- | M] (Dropbox, Inc.) -- C:\Users\Božáček\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2015.04.28 18:25:34 | 000,441,896 | ---- | M] (SPAMfighter ApS) -- C:\Users\Božáček\AppData\Roaming\Fighters\Tray\AutoInstall\DM.exe
[2015.04.28 18:25:34 | 000,441,896 | ---- | M] (SPAMfighter ApS) -- C:\Users\Božáček\AppData\Roaming\Fighters\Tray\Updates\TKTRAY-DM\DM.exe
[2013.04.12 16:10:43 | 000,099,328 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe
[2012.12.16 18:05:00 | 000,010,134 | R--- | M] () -- C:\Users\Božáček\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2013.01.29 04:33:10 | 032,682,184 | ---- | M] (SweetLabs,Inc.) -- C:\Users\Božáček\AppData\Roaming\OpenCandy\9DBB2F198B614970822F6678647650D7\version51030bc4470a0.exe
[2012.11.28 01:39:16 | 027,905,968 | ---- | M] (TuneUp Software) -- C:\Users\Božáček\AppData\Roaming\OpenCandy\E82CC726108A42C1A95F3C8E14B633DB\TuneUpUtilities2013_2200329_cs-CZ.exe
[2011.06.09 21:03:56 | 005,845,528 | ---- | M] (Uniblue Systems Ltd ) -- C:\Users\Božáček\AppData\Roaming\OpenCandy\OpenCandy_6BCEA96A195A4C638668D85D654529C3\driverscanner (33).exe
[2011.09.24 13:19:05 | 000,416,160 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\OpenCandy\OpenCandy_6BCEA96A195A4C638668D85D654529C3\LatestDLMgr.exe
[2011.10.07 16:36:40 | 000,416,160 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\OpenCandy\OpenCandy_CF34D4ED28BE41328C175ED5DCB44630\LatestDLMgr.exe
[2011.08.02 00:38:30 | 001,872,896 | ---- | M] (Speedchecker Limited ) -- C:\Users\Božáček\AppData\Roaming\OpenCandy\OpenCandy_CF34D4ED28BE41328C175ED5DCB44630\pcspeedup.exe
[2011.02.17 23:46:25 | 000,835,440 | R--- | M] () -- C:\Users\Božáček\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
[2012.02.24 15:17:13 | 000,697,965 | ---- | M] () -- C:\Users\Božáček\AppData\Roaming\uTorrent\unins000.exe
[2015.04.29 15:31:43 | 001,699,920 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe
[2014.02.07 09:33:05 | 000,905,296 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.3.2_30488.exe
[2014.04.29 14:16:15 | 001,270,352 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.1_30888.exe
[2014.05.19 15:33:02 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.1_31139.exe
[2014.06.13 11:25:24 | 001,267,536 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.1_31395.exe
[2014.07.02 22:07:33 | 001,322,832 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_32126.exe
[2014.09.18 11:10:41 | 001,414,992 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_33870.exe
[2014.09.22 20:59:47 | 001,416,016 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_34024.exe
[2014.10.08 07:42:30 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_34309.exe
[2014.10.28 11:26:57 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_34944.exe
[2014.11.26 16:33:36 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_35702.exe
[2015.01.21 12:49:13 | 001,374,032 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_37754.exe
[2015.03.04 14:34:42 | 001,742,928 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_38913.exe
[2015.03.25 12:22:19 | 001,439,144 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_39586.exe
[2015.03.26 14:31:16 | 001,442,384 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.2_39710.exe
[2015.04.28 15:18:11 | 001,441,104 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.3_40097.exe
[2015.04.29 15:31:43 | 001,699,920 | ---- | M] (BitTorrent Inc.) -- C:\Users\Božáček\AppData\Roaming\uTorrent\updates\3.4.3_40208.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2015.05.01 10:37:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015.05.01 10:47:04 | 000,000,298 | ---- | M] () -- C:\Windows\Tasks\Funmoods.job
[2015.05.01 10:24:18 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2015.05.01 10:22:01 | 000,000,952 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2015.04.30 12:06:00 | 000,000,918 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000Core.job
[2015.05.01 10:06:00 | 000,000,970 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4021130684-3837087373-3470918577-1000UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2015.04.29 15:37:06 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\system32\WindowsAccessBridge-32.dll
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011.08.02 09:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd)
"" = C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe -- [2012.09.28 20:18:24 | 000,842,680 | ---- | M] (Samsung)
"iCloudServices" = C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe -- [2014.11.21 14:20:52 | 000,043,816 | ---- | M] (Apple Inc.)
"ApplePhotoStreams" = C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe -- [2014.11.21 14:20:38 | 000,043,816 | ---- | M] (Apple Inc.)
"com.apple.dav.bookmarks.daemon" = C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
"Google Update" = "C:\Users\Božáček\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2012.03.20 15:36:46 | 000,116,648 | ---- | M] (Google Inc.)
"AdobeBridge" =
"NextLive" = C:\Windows\SysWOW64\rundll32.exe "C:\Users\Božáček\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -- [2009.07.14 03:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation)
"iLivid" = "C:\Users\Božáček\AppData\Local\iLivid\iLivid.exe" -autorun
"uTorrent" = "C:\Users\Božáček\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2015.04.29 15:31:43 | 001,699,920 | ---- | M] (BitTorrent Inc.)
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2015.03.25 14:20:40 | 031,682,144 | R--- | M] (Skype Technologies S.A.)
"Xvid" = C:\Program Files (x86)\Xvid\CheckUpdate.exe -- [2011.01.17 21:41:43 | 000,008,192 | ---- | M] ()

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2015.04.22 15:03:48 | 000,376,944 | ---- | M] (Mozilla Corporation) MD5=345B45BE09381D2011EB7F9AC11D8AC4 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2010.11.21 05:25:08 | 000,673,040 | ---- | M] (Microsoft Corporation) MD5=C613E69C3B191BB02C7A191741A1D024 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015.05.01 10:33:54 | 000,000,512 | ---- | M] () MD5=EE3DDD6F9B7B0D5B3B39F9C99DA76CC7 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2011.10.23 16:58:22 | 000,148,268 | ---- | M] () -- \ProgramData\Fugazo\Committed - Premium Edition\cached\sounds\logo_crack.wav
[2011.10.23 17:03:45 | 000,227,364 | ---- | M] () -- \ProgramData\Fugazo\Committed - Premium Edition\cached\sounds\scenes\mg_fireextinguisher_glasscrack_1.wav
[2011.10.23 17:03:45 | 000,238,064 | ---- | M] () -- \ProgramData\Fugazo\Committed - Premium Edition\cached\sounds\scenes\mg_fireextinguisher_glasscrack_2.wav
[2011.10.23 16:58:22 | 000,148,268 | ---- | M] () -- \Users\All Users\Fugazo\Committed - Premium Edition\cached\sounds\logo_crack.wav
[2011.10.23 17:03:45 | 000,227,364 | ---- | M] () -- \Users\All Users\Fugazo\Committed - Premium Edition\cached\sounds\scenes\mg_fireextinguisher_glasscrack_1.wav
[2011.10.23 17:03:45 | 000,238,064 | ---- | M] () -- \Users\All Users\Fugazo\Committed - Premium Edition\cached\sounds\scenes\mg_fireextinguisher_glasscrack_2.wav
[2013.12.27 15:56:48 | 000,002,855 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Big Top Games\Mysterium - Lake Bliss Collector's Edition\QU5JVEtB\30CE-z2-CrackInRockWall.loc
[2013.12.27 15:56:48 | 000,002,756 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Big Top Games\Mysterium - Lake Bliss Collector's Edition\QU5JVEtB\32CE-z1-CrackedCeiling.loc
[2014.05.04 21:13:43 | 000,000,056 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\full_screen_video_state_place_the_crack.fvs
[2014.05.04 21:13:43 | 000,027,921 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack.scf
[2014.05.04 21:12:45 | 000,000,016 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack.sif
[2014.05.04 21:13:43 | 000,000,017 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack_animation.caf
[2014.05.04 21:13:43 | 000,011,376 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack_sub_balloon.scf
[2014.05.04 21:13:43 | 000,009,958 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack_sub_firepoint.scf
[2014.05.04 21:13:43 | 000,031,531 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 4 Collectors Edition\default\profiles\anitka_948964570\se\place_the_crack_sub_puzzle_drill_rig.scf
[2015.04.11 14:48:24 | 000,006,180 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 6 CE\ce\profiles\anitka_913542593\se\se_05_sub_crack.scf
[2015.04.11 14:48:24 | 000,006,180 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale 6 CE\ce\profiles_copy\anitka_913542593\se\se_05_sub_crack.scf
[2011.12.09 18:43:49 | 000,006,261 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Fear For Sale Sunnyvale Story CE\default\profiles\anitka_680528172\se\mill_sub_cracked_shaft.scf
[2012.01.22 17:43:09 | 000,000,076 | ---- | M] () -- \Users\Božáček\AppData\Roaming\EleFun Games\Witches Legacy The Charleston Curse CE\default\profiles\anitka_369418280\se\newstyle_keycrack\state_newstyle_keycrack.mgs
[2012.10.18 11:34:38 | 002,605,331 | ---- | M] () -- \Users\Božáček\AppData\Roaming\JoyBits\The Great Unknown Houdini's Castle\CE\cached\sounds\ambients\fire_crackling.wav
[2012.05.30 15:18:05 | 000,000,076 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Microsoft\Windows\Cookies\božáček@crackers[2].txt
[2014.01.16 21:10:20 | 000,137,709 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu].torrent
[2012.04.20 13:06:59 | 000,009,712 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Call of Duty - Modern Warfare multiplayer crack.1.torrent
[2012.04.20 09:46:14 | 000,009,712 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Call of Duty - Modern Warfare multiplayer crack.torrent
[2012.11.16 17:32:36 | 000,011,927 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Call of Duty Black Ops II CrackFix Repack-SKIDROW.torrent
[2012.11.18 11:24:27 | 000,013,885 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Cruel Games - Red Riding Hood - Full PreCracked - Foxy Games.torrent
[2012.12.09 14:13:20 | 000,011,572 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Hitman.Absolution.Crack-Only.SKIDROW.torrent
[2012.12.04 19:07:39 | 000,019,863 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Mystery of the Ancients Curse of the Black Water CE - Full PreCracked - Foxy Games.torrent
[2013.10.27 19:46:55 | 000,011,169 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\NBA.2K14.Crack.Only-RELOADED.torrent
[2013.10.27 17:00:57 | 000,051,289 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\NBA2K14-SKIDROWCRACK.COM.torrent
[2013.02.27 12:48:54 | 000,048,110 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Silent Scream II - The Bride - Full PreCracked - Foxy Games.torrent
[2012.04.08 16:18:24 | 000,013,626 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Solitaire Mystery - Stolen Power - Full PreCracked - Foxy Games.torrent
[2013.03.09 17:03:01 | 000,000,483 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\Tomb.Raider.CRACK.ONLY-SKIDROW.torrent
[2014.03.18 17:49:34 | 000,005,592 | ---- | M] () -- \Users\Božáček\AppData\Roaming\VitySoft\FRD\plugins\crackle.frp
[2012.04.20 10:01:41 | 000,012,116 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrack.cfx
[2012.04.20 10:01:46 | 000,012,168 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatest.cfx
[2012.04.20 10:01:47 | 000,012,536 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2012.04.20 10:01:49 | 000,013,084 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2012.04.20 10:01:51 | 000,012,436 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2012.04.20 10:01:49 | 000,012,720 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestshadow.cfx
[2012.04.20 10:01:41 | 000,012,484 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcracklightmap.cfx
[2012.04.20 10:01:43 | 000,013,032 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcracklightmapshadow.cfx
[2012.04.20 10:01:42 | 000,012,720 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2012.04.20 10:01:48 | 000,012,756 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2012.04.20 10:01:48 | 000,013,096 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2012.04.20 10:01:50 | 000,013,672 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2012.04.20 10:01:52 | 000,012,816 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2012.04.20 10:01:50 | 000,013,348 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2012.04.20 10:01:42 | 000,013,060 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2012.04.20 10:01:45 | 000,013,636 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2012.04.20 10:01:43 | 000,012,880 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetail.cfx
[2012.04.20 10:01:48 | 000,012,916 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatest.cfx
[2012.04.20 10:01:48 | 000,013,256 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2012.04.20 10:01:51 | 000,013,832 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2012.04.20 10:01:52 | 000,012,940 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2012.04.20 10:01:51 | 000,013,508 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2012.04.20 10:01:43 | 000,013,220 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmap.cfx
[2012.04.20 10:01:45 | 000,013,796 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2012.04.20 10:01:46 | 000,012,904 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailpointlight.cfx
[2012.04.20 10:01:45 | 000,013,472 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailshadow.cfx
[2012.04.20 10:01:46 | 000,012,780 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2012.04.20 10:01:45 | 000,013,312 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2012.04.20 10:01:45 | 000,012,400 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackpointlight.cfx
[2012.04.20 10:01:43 | 000,012,668 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetailcrackshadow.cfx
[2012.04.20 10:01:41 | 000,012,296 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrack.cfx
[2012.04.20 10:01:47 | 000,012,348 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatest.cfx
[2012.04.20 10:01:47 | 000,012,716 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2012.04.20 10:01:49 | 000,013,264 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2012.04.20 10:01:51 | 000,012,612 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2012.04.20 10:01:49 | 000,012,900 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2012.04.20 10:01:41 | 000,012,664 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmap.cfx
[2012.04.20 10:01:43 | 000,013,212 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2012.04.20 10:01:42 | 000,012,900 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2012.04.20 10:01:48 | 000,012,936 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2012.04.20 10:01:48 | 000,013,276 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2012.04.20 10:01:51 | 000,013,852 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2012.04.20 10:01:52 | 000,012,996 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2012.04.20 10:01:50 | 000,013,528 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2012.04.20 10:01:43 | 000,013,240 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2012.04.20 10:01:45 | 000,013,816 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2012.04.20 10:01:43 | 000,013,060 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetail.cfx
[2012.04.20 10:01:48 | 000,013,096 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatest.cfx
[2012.04.20 10:01:48 | 000,013,436 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2012.04.20 10:01:51 | 000,014,012 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2012.04.20 10:01:52 | 000,013,120 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2012.04.20 10:01:51 | 000,013,688 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2012.04.20 10:01:43 | 000,013,400 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmap.cfx
[2012.04.20 10:01:45 | 000,013,976 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2012.04.20 10:01:46 | 000,013,084 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailpointlight.cfx
[2012.04.20 10:01:45 | 000,013,652 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailshadow.cfx
[2012.04.20 10:01:46 | 000,012,960 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2012.04.20 10:01:45 | 000,013,492 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2012.04.20 10:01:45 | 000,012,576 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackpointlight.cfx
[2012.04.20 10:01:43 | 000,012,848 | ---- | M] () -- \Users\Božáček\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BF8-11CF-B773-DD01BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackshadow.cfx

< *keygen* /s >
[2012.12.16 17:59:40 | 000,000,349 | ---- | M] () -- \Users\Božáček\AppData\Roaming\uTorrent\EA Games Generic Multi Keygen v214 - FFF By ChattChitto.torrent
[2015.04.19 07:56:44 | 000,010,656 | ---- | M] () -- \Users\GTA V\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z7FUMNYV\GTA-5-keygen-generator-140x140[1].jpg
[2015.04.19 07:56:57 | 000,815,968 | ---- | M] () -- \Users\GTA V\AppData\Local\Temp\gta-5-beta-keygen.zip
[15 \Users\GTA V\AppData\Local\Temp\*.tmp files -> \Users\GTA V\AppData\Local\Temp\*.tmp -> ]

< *loader* /s >
[2013.10.10 18:47:50 | 000,919,440 | ---- | M] () -- \Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpndownloader.exe
[2013.10.10 18:47:50 | 000,919,440 | ---- | M] () -- \Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpndownloader.exe
[2012.02.23 00:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 00:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 00:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2015.01.20 23:35:50 | 000,060,712 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\YSLoader.exe
[2014.11.21 14:20:40 | 000,043,816 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2014.11.21 14:20:40 | 001,469,224 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2010.03.18 23:21:56 | 000,063,312 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2010.03.18 00:17:14 | 000,004,096 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2008.02.28 13:26:06 | 000,111,912 | ---- | M] () -- \Program Files (x86)\Common Files\Nero\Shared\NSCLoader.dll
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 03:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2015.04.02 20:28:32 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\ext\scui\images\loaderSmallBlue.gif
[2012.09.28 18:09:34 | 000,069,120 | ---- | M] () -- \Program Files (x86)\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2013.08.30 08:52:14 | 000,001,702 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2009.12.12 15:12:04 | 000,045,056 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2011.11.06 12:58:16 | 000,001,849 | ---- | M] () -- \Program Files (x86)\Yawcam\img\ajax-loader.gif
[2012.03.13 13:10:54 | 003,297,128 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 11:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 11:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 11:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 11:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 11:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2015.01.20 23:35:32 | 000,077,096 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\YSLoader.exe
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2015.04.02 20:28:32 | 000,001,737 | ---- | M] () -- \Program Files\Rockstar Games\Social Club\UI\ext\scui\images\loaderSmallBlue.gif
[2015.04.14 03:52:39 | 000,031,235 | ---- | M] () -- \ProgramData\Common Toolkit Suite\AVEngine\Defs\ide\loader-p.ide
[2008.02.04 11:32:50 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2015.04.14 03:52:39 | 000,031,235 | ---- | M] () -- \Users\All Users\Common Toolkit Suite\AVEngine\Defs\ide\loader-p.ide
[2008.02.04 11:32:50 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2014.02.07 11:23:49 | 000,000,723 | ---- | M] () -- \Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh\2.3.8_0\img\ajax-loader.gif
[2014.02.07 11:23:49 | 000,003,441 | ---- | M] () -- \Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh\2.3.8_0\js\FMLoader.js
[2014.01.13 21:30:20 | 000,000,522 | ---- | M] () -- \Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.6_0\images\loader.gif
[2012.08.16 12:57:57 | 000,000,054 | ---- | M] () -- \Users\Božáček\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\Z5AW4SFN\www.icarly.com\xml\loader.swf\loaderLogging.sol
[2014.08.29 09:26:31 | 000,018,544 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader-0ee9685baf8ff395a7119d551063e2d4.min[1].js
[2015.01.04 12:09:20 | 000,019,121 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2015.03.15 12:42:36 | 000,019,121 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[2].js
[2014.06.17 16:01:17 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader-3b8e790904fffcf74f96367cd382e261.min[1].js
[2014.02.24 11:27:54 | 000,001,870 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[1].htm
[2014.04.06 08:48:12 | 000,001,870 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[2].htm
[2014.05.27 08:36:47 | 000,001,976 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[3].htm
[2014.04.07 14:48:30 | 000,001,870 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[4].htm
[2014.06.18 10:26:20 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[5].htm
[2014.09.24 14:44:22 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0H50EL85\AdLoader[6].htm
[2014.06.17 09:13:48 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader-3b8e790904fffcf74f96367cd382e261.min[1].js
[2014.09.28 07:37:45 | 000,018,715 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader-a5fa12058ddb9a8919d6906ba95d7c57.min[1].js
[2014.06.18 10:48:47 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader[1].htm
[2014.08.29 09:26:30 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader[2].htm
[2015.01.04 12:09:19 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader[3].htm
[2015.03.15 12:42:36 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SLADB7U\AdLoader[4].htm
[2014.08.29 15:59:43 | 000,018,544 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-0ee9685baf8ff395a7119d551063e2d4.min[1].js
[2015.01.06 12:25:06 | 000,019,121 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2014.05.27 08:36:47 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-3b8e790904fffcf74f96367cd382e261.min[1].js
[2014.07.12 09:37:37 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-3b8e790904fffcf74f96367cd382e261.min[2].js
[2014.07.23 10:02:56 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-3b8e790904fffcf74f96367cd382e261.min[3].js
[2014.03.30 08:43:04 | 000,112,122 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader-7b473315d0084c71df83cdee72aab144.min[1].js
[2014.06.17 09:13:48 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader[1].htm
[2014.06.17 16:01:17 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\USQ8WBGS\AdLoader[2].htm
[2014.06.18 10:26:20 | 000,017,912 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader-3b8e790904fffcf74f96367cd382e261.min[1].js
[2014.02.24 11:27:54 | 000,111,819 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader-725aebe4743338ea770018ce780c157b.min[1].js
[2014.04.06 08:48:13 | 000,112,122 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader-7b473315d0084c71df83cdee72aab144.min[1].js
[2014.04.07 14:48:30 | 000,112,122 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader-7b473315d0084c71df83cdee72aab144.min[2].js
[2014.09.24 14:44:22 | 000,018,715 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader-a5fa12058ddb9a8919d6906ba95d7c57.min[1].js
[2014.03.30 08:43:04 | 000,001,870 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[1].htm
[2014.04.07 15:01:41 | 000,001,870 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[2].htm
[2014.06.17 14:12:40 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[3].htm
[2014.07.12 09:37:37 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[4].htm
[2014.07.23 10:02:56 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[5].htm
[2014.08.29 15:59:43 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[6].htm
[2015.01.06 12:25:06 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[7].htm
[2014.09.28 07:37:44 | 000,001,980 | ---- | M] () -- \Users\Božáček\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XOQKZBJD\AdLoader[8].htm
[2015.03.12 11:47:42 | 000,072,638 | ---- | M] () -- \Users\Božáček\AppData\Local\Skype\Apps\login\images\loader.gif
[2015.03.12 11:47:42 | 000,003,032 | ---- | M] () -- \Users\Božáček\AppData\Local\Skype\Apps\login\images\loader.png
[2015.03.12 11:47:42 | 000,006,012 | ---- | M] () -- \Users\Božáček\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2015.03.12 11:47:42 | 000,021,956 | ---- | M] () -- \Users\Božáček\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2015.03.12 11:47:42 | 000,009,772 | ---- | M] () -- \Users\Božáček\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2015.01.29 17:23:56 | 000,000,786 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\Božáčeks iPhone\DiagnosticLogs\LanguageAssetLoader\LanguageAssetLoader_2014_09_18_06_12_230200.log
[2012.12.18 14:30:51 | 000,000,042 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L33L8C6E\city-fb.socialquantum.com\assets\loader.swf\SQLoader.sol
[2015.01.30 15:49:23 | 000,000,121 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L33L8C6E\service.cdn.videoplaza.com\com.videoplaza.bootloader.sol
[2012.04.06 10:18:24 | 000,000,060 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L33L8C6E\superhry.cz\HSO_40e1f8z\bushroaylits.swf\MiniclipLoaderAd.sol
[2013.06.01 15:37:24 | 000,000,060 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L33L8C6E\superhryzadarmo.cz\hry\soubor\caravana-racers.swf\MiniclipLoaderAd.sol
[2011.12.01 18:36:40 | 000,000,054 | ---- | M] () -- \Users\Božáček\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L33L8C6E\www.icarly.com\xml\loader.swf\loaderLogging.sol
[2015.04.19 07:33:09 | 000,031,516 | ---- | M] () -- \Users\GTA V\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z7FUMNYV\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013.04.15 13:32:10 | 000,060,416 | ---- | M] () -- \Users\GTA V\AppData\Roaming\Seznam.cz\bin\22365libfoxloader-x64.dll
[2013.03.29 13:37:34 | 000,059,384 | ---- | M] () -- \Users\GTA V\AppData\Roaming\Seznam.cz\bin\22365libfoxloader.dll
[2015.04.19 07:33:15 | 000,000,165 | ---- | M] () -- \Users\GTA V\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.03.25 16:27:20 | 000,000,665 | ---- | M] () -- \Users\GTA V\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013.03.25 16:27:26 | 000,000,117 | ---- | M] () -- \Users\GTA V\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109110000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109110000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109A20000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2014.04.14 15:30:34 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2014.04.14 15:30:34 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.04.04 06:47:00 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[1 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2014.04.14 15:30:34 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2014.04.14 15:30:34 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.04.04 06:47:00 | 000,009,622 | ---- | M] () -- \Windows\SysWOW64\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2010.11.21 11:27:28 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 11:27:28 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2010.11.21 11:27:28 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2010.11.21 11:27:28 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2010.11.21 11:27:28 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2010.11.21 05:27:02 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2010.11.21 05:27:02 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89_winload.efi_75834aa0
[2010.11.21 05:27:02 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89_winload.exe_75835076
[2010.11.21 05:27:02 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89_winresume.efi_85cd069f
[2010.11.21 05:27:02 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2010.11.21 11:26:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll

========== Files - Unicode (All) ==========
[2014.09.24 17:17:07 | 000,000,795 | ---- | M] ()(C:\Users\Božáček\Desktop\???? Cat-A-Cat.lnk) -- C:\Users\Božáček\Desktop\Игры Cat-A-Cat.lnk
[2014.09.24 17:17:07 | 000,000,795 | ---- | C] ()(C:\Users\Božáček\Desktop\???? Cat-A-Cat.lnk) -- C:\Users\Božáček\Desktop\Игры Cat-A-Cat.lnk
[2014.08.11 10:52:34 | 000,000,000 | ---D | M](C:\Users\Bo?áeek\AppData\Roaming\Cisco) -- C:\Users\Božáèek\AppData\Roaming\Cisco

========== Alternate Data Streams ==========

@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 183 bytes -> C:\ProgramData\TEMP:012BC84F
@Alternate Data Stream - 181 bytes -> C:\ProgramData\TEMP:4A8EB1C4
@Alternate Data Stream - 180 bytes -> C:\ProgramData\TEMP:4CD3F344
@Alternate Data Stream - 179 bytes -> C:\ProgramData\TEMP:C78DADEA
@Alternate Data Stream - 171 bytes -> C:\ProgramData\TEMP:F610C203
@Alternate Data Stream - 159 bytes -> C:\ProgramData\TEMP:1604D047
@Alternate Data Stream - 159 bytes -> C:\ProgramData\TEMP:14B2E0BD
@Alternate Data Stream - 158 bytes -> C:\ProgramData\TEMP:FB4262DE
@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:7B9BB187
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:48C205FE
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:DBE05F87
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:B3C7433B
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:8029E75F
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:F6DA3F39
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:65C4D44A
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:474022C7
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:2043337E
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:26499772
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:183A9046
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:F5E8CAE0
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:DBC3D477
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:AD2DB2F9
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:ED0B32CA
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:D1C69C9C
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:DD6F157A
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:D026A5A4
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:95079543
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:EB6417F7
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:774C075A
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:02CC0035

< End of report >

OTL Extras logfile created on: 1.5.2015 10:30:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Božáček\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 16,68% Memory free
10,00 Gb Paging File | 3,41 Gb Available in Paging File | 34,08% Paging File free
Paging file location(s): c:\pagefile.sys 4096 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 130,47 Gb Total Space | 37,44 Gb Free Space | 28,69% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 48,22 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive E: | 465,60 Gb Total Space | 42,43 Gb Free Space | 9,11% Space Free | Partition Type: NTFS
Drive F: | 7,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive G: | 1863,01 Gb Total Space | 1568,08 Gb Free Space | 84,17% Space Free | Partition Type: NTFS
Drive K: | 232,88 Gb Total Space | 5,35 Gb Free Space | 2,30% Space Free | Partition Type: NTFS

Computer Name: BOZAK-WIN7 | User Name: Božáček | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-4021130684-3837087373-3470918577-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-4021130684-3837087373-3470918577-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [scan_with_SPYWAREfighter] -- C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe /scan "%1" (SPAMfighter)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [scan_with_SPYWAREfighter] -- C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe /scan "%1" (SPAMfighter)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
"AntiSpywareOverride" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
"FirewallOverride" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
"DisableNotifications" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
"DisableNotifications" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]
"DisableNotifications" = 0 -- [2015.02.18 20:01:04 | 000,000,000 | ---D | M]

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02FAA0C0-4824-4A62-AC43-0D397C64ED52}" = rport=138 | protocol=17 | dir=out | app=system |
"{0AC1ECF2-EAEC-489E-8CFA-E5CABF868648}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1072C1BF-43D1-4691-BF8F-856D2C4285E8}" = lport=10243 | protocol=6 | dir=in | app=system |
"{12415DB1-B7BD-42AF-90AF-54CB217E83A2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{16C50C60-8BEB-441A-910E-B3A8519926A8}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{27F92A0D-3B4C-4A16-81F6-9B55903D5121}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{2AC8C8A6-DE4B-4189-B749-F5965AD2586D}" = lport=139 | protocol=6 | dir=in | app=system |
"{2EFC514E-9CAC-4AB1-8DC8-8FB6E5B68A52}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{306AF4C2-DD65-4ACC-912F-E5D2756CF36C}" = rport=445 | protocol=6 | dir=out | app=system |
"{3542C6EE-E601-40C3-9E64-AEF363CF6914}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{52012EAE-E6FD-402C-923E-D7FE664A4624}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{5C90364E-28E5-423C-A815-7C0F5EE06BBB}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{6042B87E-7966-466D-BE56-C2CE7153B17F}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{62717AA1-029B-418D-B667-6C44BB5AFED1}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{6D4A28D5-78C4-48ED-B2AE-C88265F876BB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6F9D7701-5762-4920-9AA0-81E5960DBBFD}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{718B6069-8802-4D3A-B3E2-C0A44F31FD32}" = lport=2869 | protocol=6 | dir=in | app=system |
"{71AC9CAC-4459-4A91-AB71-DC0A38BB2F26}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7E02A690-E33A-4571-80BE-9CE97DE34430}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{81C4B575-EE9A-491C-962B-C0FA61202B61}" = rport=10243 | protocol=6 | dir=out | app=system |
"{82D5589A-F4C1-467F-87FE-40C7D799C7FA}" = lport=137 | protocol=17 | dir=in | app=system |
"{9086FC1E-040D-4C42-8C58-F61959B43BA0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9A431845-CA29-49A8-949A-8EB443B46137}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A470AD19-8B8A-4E7B-983D-1BBBFD8A407A}" = lport=445 | protocol=6 | dir=in | app=system |
"{A6F333B5-06AB-435F-87BA-14D95FABBB54}" = rport=139 | protocol=6 | dir=out | app=system |
"{BD90F2F5-4810-4F3D-9300-5224FFB879C6}" = rport=137 | protocol=17 | dir=out | app=system |
"{D9701E98-C4F2-4FAB-A142-C26472E851CE}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D9D64A93-97F6-4267-B47A-82AD98160A4B}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{E15A249C-D96D-4F31-9208-D1F9D046C703}" = lport=138 | protocol=17 | dir=in | app=system |
"{E28D3BE9-AC3D-4194-88E0-D7F94EAFA00A}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{E4184A5B-AD0C-497B-BADC-4BA8850CFE69}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{EA921A8F-9225-4CA1-9F18-2036CEB10E16}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{ECFFEEBD-DF32-4071-AD71-43D608A294B5}" = lport=5353 | protocol=17 | dir=in | app=c:\users\božáček\appdata\local\google\chrome\application\chrome.exe |
"{EE8FB9FA-33AE-4C92-A1FC-8208865BD3CE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FBCED194-1474-477A-AB11-A049F20ADE9A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00ABABDF-67D2-4016-A985-A905230E5F5F}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{011EA3A3-4903-430E-9845-918951660328}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\half-life\hl.exe |
"{07270F87-6037-4274-8F49-70811D5DB156}" = protocol=6 | dir=in | app=d:\the sims 4\game\bin\ts4.exe |
"{08AFBDCA-9BC0-43D8-A309-477E267B4EEE}" = protocol=6 | dir=in | app=c:\users\božáček\appdata\roaming\utorrent\utorrent.exe |
"{0A167F95-32A3-4DF3-A051-FB6445C23165}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{0B9B01E8-E9D1-4AA2-9267-E7CC400D9E4D}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{0BA6CBC6-96D1-42B4-BEF4-75B16DC1F4C1}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0CC5297F-7C1B-40C2-B958-940C60B6CC4B}" = protocol=6 | dir=in | app=d:\battlefield 4\battlefield 4\bf4_x86.exe |
"{113C7AD6-1E9E-43FD-AFEF-3709964FF77D}" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrsp.exe |
"{11A8DAFC-4131-4279-BEB4-E70FDB177054}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{124DE563-57BC-4041-9809-5AA4BD2ED76B}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{125BC2C4-B79A-4594-A8E2-B1EFD45B337C}" = protocol=17 | dir=in | app=d:\watch_dogs\bin\watch_dogs.exe |
"{15CACC23-F27C-4C36-8151-51EFD8B51FE2}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.0\sonarhost.exe |
"{180C8D6F-FAFC-4265-8442-6330695ECEDA}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"{1C389EC2-4ABF-45F2-9ACE-84165B047F7E}" = protocol=17 | dir=in | app=d:\battlefield 3\battlefield 4 beta\bf4.exe |
"{1CB23056-FE61-4C5D-B407-8A1FFA547698}" = protocol=6 | dir=in | app=c:\users\božáček\appdata\roaming\utorrent\utorrent.exe |
"{21532023-006A-4784-8FDD-C44D5CEE0B02}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{235BEC5C-D10F-4124-BE91-2946FECB15FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{23A6E2DA-00CE-4F40-9AB4-83978D34E1EF}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{25000704-29E9-40F0-872A-70496FE281F5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2AE50197-1E2A-4369-8BD0-C28D508F38D3}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{2B48BB0F-CA69-414C-A1DC-C8ABDF8DADFC}" = protocol=6 | dir=in | app=d:\assassin's creed revelations\assassinscreedrevelations.exe |
"{2CAF6A0D-AAA2-4EFF-B138-B73609BCA2AF}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{31852D89-592A-456E-8A11-48CF01E282A8}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{353ECE8E-49F3-443A-815E-26DA767002D4}" = protocol=17 | dir=in | app=d:\assassin's creed revelations\assassinscreedrevelations.exe |
"{3AFDEEA4-6B1F-423B-B7A1-61493556F5B1}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3 beta\bf3.exe |
"{3EA8E376-D99F-4E58-94FB-66EFB91EAF0F}" = protocol=17 | dir=in | app=d:\bf2\bf2.exe |
"{3F3FD509-5845-4F9E-B7EA-4165A40CAC0E}" = protocol=6 | dir=in | app=d:\battlefield 3\battlefield 4 beta\bf4.exe |
"{41187124-4EC0-4650-95BA-B0779BF2DF12}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{4394083F-D4EA-4DA1-B258-A3A411D1C5C5}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{456AD7FF-F677-4368-9DF1-61099C49480A}" = protocol=6 | dir=in | app=d:\games\need for speed rivals\nfs14_x86.exe |
"{45A0C9B6-BA4F-4432-9F34-06AE14B80A01}" = protocol=17 | dir=in | app=d:\nba 2k14\nba2k14.exe |
"{4703AC24-F977-4C9F-B9D9-69BBE1372753}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{47FAEEE7-F803-430C-B3A7-729D9324499F}" = protocol=6 | dir=in | app=d:\battlefield1942\steamapps\hdhneddead\counter-strike\hl.exe |
"{49F40682-A786-45D9-B37F-558C85F6B370}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{4DF67977-7686-4239-ACC1-C5FE8D6B6C14}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{4EB8EF8B-D95A-45AB-8AB3-2275B2D9498F}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{4F771211-60F5-4AC0-AF5F-2F2F7A592694}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steam.exe |
"{50CCC5C3-AFFD-428A-976B-FB20945D7A69}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{512EB3C9-58EF-48CD-B666-2BD677B1D918}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\retia1\counter-strike\hl.exe |
"{5576A70C-E0C1-400A-AB2F-6564250B9E59}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer.exe |
"{55D15B46-3B7C-4340-AA28-080DAE6B1132}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steam.exe |
"{57268C7F-7EE2-4238-A039-17D1A5020F22}" = protocol=6 | dir=in | app=d:\warthunder\launcher.exe |
"{581C97EC-BC2B-479E-8E3F-648FEABF0FE1}" = protocol=6 | dir=in | app=c:\users\božáček\appdata\roaming\dropbox\bin\dropbox.exe |
"{58B2BA02-6C54-4B7D-ABE3-AE4824A4D697}" = dir=out | app=c:\program files\eslwire\wire.exe |
"{5C75B6C0-A8E9-4858-8ACC-F2DB9AFEFB17}" = protocol=17 | dir=in | app=d:\battlefield 4\battlefield 4\bf4.exe |
"{5E87D802-62E6-4F08-81A7-E97470D11885}" = protocol=17 | dir=in | app=d:\games\need for speed rivals\nfs14.exe |
"{6316D5CE-F29F-4909-90D6-F39C99AD1B1F}" = protocol=6 | dir=in | app=d:\rayman\gu.exe |
"{68C3F57A-1A03-4061-A4A9-A45E682CD0C8}" = protocol=17 | dir=in | app=d:\warthunder\launcher.exe |
"{6BDEB006-A7FE-4251-838F-3A36449658EA}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{6D10CFDE-CC19-4C24-AF8A-B3EB1B726922}" = protocol=6 | dir=in | app=d:\battlefield 3\battlefield 1942\bf1942.exe |
"{6FD1D8DE-B3A5-4637-AEA2-8765FAB8A4B6}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{715EC7E8-79D2-4DDB-B474-91BE3C8B75B5}" = protocol=17 | dir=in | app=d:\battlefield 3\battlefield 1942\bf1942.exe |
"{7187E38C-B52B-49D0-A3FB-46EA7BF18862}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\teamviewer_service.exe |
"{71DA285F-E436-42E4-9390-50BE537EC4E2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\retia1\counter-strike\hl.exe |
"{750ADFB6-2AF9-44D6-ABDF-36F303E8F01B}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\tropico 5\tropico5steam.exe |
"{77D608F2-1962-4537-ADE8-62951C69E37A}" = protocol=6 | dir=in | app=d:\nba 2k14\nba2k14.exe |
"{7E9363AB-92EB-4F76-B745-BE6594FBD5EF}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{7F10A143-4455-43B8-905F-3147829FC658}" = protocol=17 | dir=in | app=c:\users\božáček\appdata\roaming\dropbox\bin\dropbox.exe |
"{7FA8233E-CF47-4A65-9419-5858CFBE8C68}" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{804880E3-23A1-4D08-A211-1A6ED839A13A}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\half-life\hl.exe |
"{80499109-A117-4A96-90A3-53650873047C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{80694ED2-C032-4161-BFD8-CA09525AB662}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{81AD9292-CE8C-42CF-91F0-7143673B813D}" = protocol=17 | dir=in | app=d:\rayman\rayman origins.exe |
"{81E47C1A-0892-47EE-A290-253FB780C465}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{87F1A10E-AA27-4B54-B53C-ED49BA81C7DC}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{8AE0456C-FB4E-4708-82C8-C3CA4D31B5A0}" = protocol=17 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"{8B04ECDB-6440-45C0-9EB7-4C2488823A9F}" = protocol=17 | dir=in | app=d:\battlefield1942\steamapps\hdhneddead\counter-strike\hl.exe |
"{8E34C83A-1D22-42D4-82BC-8C32F2A6E05B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8EC82972-5A10-4DAE-810F-5312030182D3}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{8FF56CA3-9E99-46F3-9E36-70B4F382489E}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{904138BC-0152-4F2A-894B-E0AC2B6566A1}" = dir=in | app=d:\battlefield1942\steam\steam.exe |
"{92BD3ACC-343C-4C9A-8EE8-FBAB1BFB7D2F}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{959F1FA8-CF21-4626-8C8F-3FF51104783F}" = protocol=6 | dir=in | app=d:\battlefield 3\battlefield 3\bf3.exe |
"{97A20B9C-86F9-45A1-AAEE-1D35B4C93D56}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\bin\steamwebhelper.exe |
"{97D3D9DA-112A-43D0-9CEF-999E1245CBD7}" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{9ABEE3C0-0DA6-4CC6-805F-7CEAFD8A7350}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{9F98743B-BAB2-4BCD-81E9-D87126130E21}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{9FFAF894-67E6-4913-A6E9-6112E8D851B1}" = dir=out | app=d:\battlefield1942\steam\steam.exe |
"{A1DECB4E-DEC8-449F-9D45-64B4D71A1EA1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\hdhneddead\counter-strike\hl.exe |
"{A31D7281-5E6A-41FA-BE55-17BEC3630C5F}" = protocol=6 | dir=in | app=d:\battlefield 4\battlefield 4\bf4.exe |
"{A57409B9-33C5-43F5-B16D-788DB4EE8A0A}" = protocol=6 | dir=in | app=d:\pes 2012\pes2012.exe |
"{A7973AB2-F09D-4FA1-9633-D7D4DFC3A100}" = protocol=6 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"{A973E368-30A9-423B-9FA1-D179953CE092}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{AD25A46B-8EA1-4FA3-B5E6-49FEC458DD44}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{AFB69D90-B5EC-40B4-B86D-A6D46A475474}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B13180C5-C043-4CC3-9354-3511883999D2}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{B240DE03-72F9-45E4-83E2-F914B779B540}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\hdhneddead\counter-strike\hl.exe |
"{B42F6021-FA4B-478B-9BE3-F8A1C3752E3F}" = protocol=17 | dir=in | app=d:\pes 2012\pes2012.exe |
"{B8E019E9-39AB-4987-A533-47C21C08FB3F}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.0\sonarhost.exe |
"{B981878F-E1EB-4A5E-8F4E-85B6B86487AA}" = protocol=6 | dir=in | app=d:\pes 13\pes2013.exe |
"{BB28F4CE-B4B1-4A94-8268-A882EB291EE9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C026C28D-CFC5-4E5A-9E16-2233F8ECE549}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe |
"{C31299DB-C41E-4C3C-9D0D-C95D91D645E4}" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrsp.exe |
"{C4B03F47-3563-466C-9E30-993378F1195C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C4CC8C95-2894-4FCF-9A5B-317C417BBC9F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C60653D7-15B4-4C3E-85D7-3C40C9AE3C4A}" = dir=in | app=c:\program files\eslwire\wire.exe |
"{C689BC73-24EA-448F-BFE6-0D0570348641}" = protocol=17 | dir=in | app=c:\users\božáček\appdata\roaming\utorrent\utorrent.exe |
"{C89A701C-2405-4DD5-9B27-1FD0EE19710F}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{CC2C3212-0BD3-4FA1-B508-E3D2945137CF}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{CD23059E-2E50-419B-AC36-FC6ADE9AAD71}" = protocol=6 | dir=out | app=system |
"{CE085C72-A8C7-4E08-B5C8-672B6BCFB4E6}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D09CC892-3DAD-4901-937A-2C51FDA8CD25}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3 beta\bf3.exe |
"{D2481FA3-7A20-424B-B349-ADF4581A7F37}" = protocol=17 | dir=in | app=d:\rayman\gu.exe |
"{D756CD7C-8DB0-427E-9F4B-B1FC7E7284AB}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\steamapps\common\tropico 5\tropico5steam.exe |
"{D7C3BAD7-AE4A-4483-A412-7EF3DB0E63D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D9835BAF-9FD5-4FA6-BC1F-9659D5E2E250}" = protocol=17 | dir=in | app=d:\battlefield1942\steam\steamapps\common\counter-strike global offensive\bin\sdklauncher.exe |
"{DA08358A-222A-4D97-81AC-3B4CE01FB8FB}" = protocol=6 | dir=in | app=d:\watch_dogs\bin\watch_dogs.exe |
"{DB4346F1-0BF2-460B-A7BF-D6F8DEDD878A}" = protocol=17 | dir=in | app=d:\the sims 4\game\bin\ts4.exe |
"{DB972952-D4CC-4328-86E8-AFF50826A925}" = protocol=17 | dir=in | app=d:\battlefield 3\battlefield 3\bf3.exe |
"{DD78022C-3A5D-432D-829B-4CF6B1D22BDE}" = protocol=17 | dir=in | app=d:\pes 13\pes2013.exe |
"{DDAD6CBA-20CA-470A-BA90-5F01FE57596A}" = protocol=6 | dir=in | app=d:\bf2\bf2.exe |
"{DF8ED022-7451-4D44-A5A6-7E86D051AA30}" = protocol=6 | dir=in | app=d:\games\need for speed rivals\nfs14.exe |
"{E062D1E6-B1E7-4133-A258-C0CE37420079}" = protocol=17 | dir=in | app=c:\users\božáček\appdata\roaming\utorrent\utorrent.exe |
"{E5D2427F-A22A-4D0C-AA48-51E7358A6BAC}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{EA256C06-2C00-4330-AD4B-7E459B40C67B}" = protocol=6 | dir=in | app=d:\battlefield1942\steam\bin\steamwebhelper.exe |
"{EF2809EC-846B-46D8-BAE4-6E0D120497AD}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{F1814D0F-9DBA-493E-90A0-58E6745948E1}" = protocol=6 | dir=in | app=d:\rayman\rayman origins.exe |
"{F1B170C6-B21A-4972-880C-30D16F090B45}" = protocol=17 | dir=in | app=d:\battlefield 4\battlefield 4\bf4_x86.exe |
"{F578AAC3-85FF-474B-8ED6-7601D7E41405}" = protocol=17 | dir=in | app=d:\games\need for speed rivals\nfs14_x86.exe |
"{F78E213E-D0E5-480F-8CB9-2E539A8B615D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FA99F5D1-33FE-4671-BC9C-3412C0F841D2}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{FC7908C5-636A-4B58-9015-36CEEA76D576}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{18F4F5EF-F98C-4472-B144-69BE95E9E1D6}" = ESET Smart Security
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{28791292-D18D-42FA-AE66-3D3D20AA8618}" = Podpora aplikací Apple (64bitová)
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{308051DA-0048-7A07-FE8B-9B6EC119A9E8}" = AMD Catalyst Install Manager
"{309768A4-A2BB-4930-A5A2-8169678C9B4C}" = iCloud
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5ED7462B-EF58-4757-B609-53755021EC34}" = Apple Mobile Device Support
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{AEF57B06-B494-8180-AFC7-05EFB1DB2B64}" = ccc-utility64
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{BD1BCEF8-5CD6-D8ED-7D36-31C2172076EA}" = AMD Media Foundation Decoders
"{CC7BE036-EA2E-5EED-2820-EF42498025DA}" = AMD Drag and Drop Transcoding
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D285FC5F-3021-32E9-9C59-24CA325BDC5C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{ED273D26-E354-1A5B-A0D0-CB5258D43BD2}" = AMD Wireless Display v3.0
"{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
"{FCC4426F-0296-D30D-729C-E76C8E7252C7}" = AMD Accelerated Video Transcoding
"ESL Wire_is1" = ESL Wire 1.17.3
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02480932-C787-4634-9FF6-483EC2E3FB16}" = MUD - FIM Motocross World Championship
"{046B79EE-7ED3-37A4-621A-FE297EF484C2}" = CCC Help Greek
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0F9639CB-D661-4FA0-A4B1-0441E515E0B7}" = Cisco AnyConnect Diagnostics and Reporting Tool
"{10CB5DDD-38E1-2EB2-F62C-C1948A99943E}" = AMD Catalyst Control Center
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{112C23F2-C036-4D40-BED4-0CB47BF5555C}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
"{1194740D-0DB8-A508-31BA-E722597B4516}" = Catalyst Control Center Graphics Previews Common
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{14DD7530-CCD2-3798-B37D-3839ED6A441C}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FB16E3B-3AFB-46CB-6E83-2F5A0CF4ED16}" = Catalyst Control Center Localization All
"{238BE990-A412-4129-A434-D03B1A9E396E}" = PdfMerge
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.3
"{26A24AE4-039D-4CA4-87B4-2F83218045F0}" = Java 8 Update 45
"{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types
"{2E3A81FB-7952-F8CB-9AD5-50544E2F4838}" = CCC Help Czech
"{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}" = Podpora aplikací Apple (32bitová)
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4172E797-CE12-AC47-05B7-0E48BDB33E75}" = CCC Help Russian
"{4428AEE6-FA5E-2913-8D12-B410E85E11AA}" = CCC Help Spanish
"{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}" = Battlefield 3™ Open Beta
"{4869414E-7AEA-4C8E-BE1C-8D40977FD517}" = Adobe Illustrator CS6
"{48EBEBBF-B9F8-4520-A3CF-89A730721917}" = The Sims™ 4
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B8E8282-E165-4DD7-843F-2A07BB1A1B5E}" = Cisco AnyConnect Posture Module
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects
"{4FE0545A-1BF3-4B9B-A044-6E1EE719E197}" = NBA 2K14
"{4FF1533E-FF2C-A04A-25DD-A8AEC6FA106B}" = CCC Help Chinese Standard
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{59F24743-2EA1-3A45-B8C2-6E0E1E078FA8}" = Microsoft Visual C# 2010 Express - ENU
"{5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}" = Battlefield 1942™
"{5EFD3544-2371-4900-8ACA-F157BA80FB0C}" = Pro Evolution Soccer 2014
"{5FD7B6B3-08C7-4FEE-9C37-A2134C699885}}_is1" = This War of Mine
"{6071CB80-DABC-B10D-F244-7F410FB3B150}" = CCC Help Polish
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6343B6BA-F97F-B336-9ED8-FFD43776E84D}" = CCC Help Finnish
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6e8f74e0-43bd-4dce-8477-6ff6828acc07}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{7f51bdb9-ee21-49ee-94d6-90afc321780e}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8988FBB3-F662-4BC8-94DE-FD764FAA1C9E}" = FixScrll
"{8D3A11D0-D925-FA0F-43F3-242E49975CD2}" = CCC Help Danish
"{8e70e4e1-06d7-470b-9f74-a51bef21088e}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
"{8EC376A3-F279-47D7-97AA-7BA2A2EB006E}" = Cisco AnyConnect Secure Mobility Client
"{8EF39A9F-6A57-9706-86A5-9312D9ED8016}" = CCC Help Portuguese
"{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1" = Yawcam 0.4.1
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.PROPLUS_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.PROPLUS_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0405-1000-0000000FF1CE}_Office14.PROPLUS_{AB90513B-B892-41B5-8F8B-1D356A449652}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.PROPLUS_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.PROPLUS_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}_Office14.PROPLUS_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92352C97-C657-DB89-5F3A-E8C3789D9C89}" = CCC Help Chinese Traditional
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95545E55-3309-1929-FF41-2908A9706742}" = CCC Help Turkish
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CA5F712-9CAA-B3CB-02D3-7134DFC8801E}" = CCC Help French
"{A128A816-FD3F-990E-DD80-E1735BD718AE}" = CCC Help Italian
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A59AB961-BE82-41E0-B0FB-648DFA6DDEA4}" = PC VGA Camer@ Plus
"{ABADE36E-EC37-413B-8179-B432AD3FACE7}" = Battlefield 4™
"{AC76BA86-7AD7-1029-7B44-A95000000001}" = Adobe Reader 9.5.1 - Czech
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{AFC9ECA9-6A4E-1370-98F3-002B63B5AF8E}" = CCC Help Thai
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B810D852-DFD6-HIT3A-89A5-CC4D47756DAF}_is1" = Hitman Absolution version 5.1
"{B88F2045-CF9A-996C-1670-6F7D65F1D18A}" = CCC Help Norwegian
"{BED96D0C-7743-3CE3-F7DF-A0A4475FBF2F}" = CCC Help Hungarian
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{CB79256B-C0E0-40C6-8EB7-BDD796203581}" = Catalyst Control Center - Branding
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CFAB3721-549D-4827-A4E8-7F90192114AB}" = Battlefield 4™ Beta
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D1F1E4D2-D2D3-4391-92EF-F63A79A67B36}" = MUD - FIM Motocross World Championship
"{D6D5CB84-0E6E-4E69-B300-C690B6911029}" = Nero 8
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}" = Grand Theft Auto V
"{E0A32336-AA27-4053-99B2-C3380B7B95AC}" = Need for Speed™ Rivals
"{E297492A-E114-CAE0-502E-5F36C386DD30}" = CCC Help Dutch
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E6533A85-ED92-F897-2B68-58AC3BD87F94}" = CCC Help English
"{E65F5A96-17B6-4176-B675-2405E76F653E}" = Fighters
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{EBAC163A-588E-1E5A-3CE8-826E9A449244}" = CCC Help Korean
"{ED65BD75-CEF3-C0C2-9E9C-FA567484FF60}" = CCC Help Japanese
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.278
"{EEB34D84-92A1-7BE3-6DB7-ABD1C4912D6B}" = Catalyst Control Center InstallProxy
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.174
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F1289D68-1C48-930F-51CF-577BDB371252}" = CCC Help Swedish
"{F3F340A5-64EC-AEEC-4BDF-DC537D390BF5}" = CCC Help German
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"µTorrent CZ_is1" = µTorrent CZ 1.8.5 (build 17414)
"9 - The Dark Side Of Notre Dame Collector's EditionFinal" = 9 - The Dark Side Of Notre Dame Collector's Edition
"ACDSee Free" = ACDSee Free
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.1
"AudioCS" = Creative Audio Control Panel
"AVI ReComp" = AVI ReComp 1.5.3
"Avisynth" = AviSynth 2.5
"Battle.net" = Battle.net
"Battlelog Web Plugins" = Battlelog Web Plugins
"Cisco AnyConnect Secure Mobility Client" = Cisco AnyConnect Secure Mobility Client
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dreamscapes - The Sandman Premium EditionFinal" = Dreamscapes - The Sandman Premium Edition
"ESN Sonar-0.70.0" = ESN Sonar
"FBReader for Windows" = FBReader for Windows
"FormatFactory" = FormatFactory 2.95
"Hearthstone" = Hearthstone
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"Chimeras - Tune of Revenge Collector's EditionFinal" = Chimeras - Tune of Revenge Collector's Edition
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.1.0
"Microsoft Visual C# 2010 Express - ENU" = Microsoft Visual C# 2010 Express - ENU
"Mozilla Firefox 37.0.2 (x86 cs)" = Mozilla Firefox 37.0.2 (x86 cs)
"MPEG4 Direct Maker" = MPEG4 Direct Maker
"MultiBit 0.5.15" = MultiBit 0.5.15
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Origin" = Origin
"PSPad editor_is1" = PSPad editor
"PunkBusterSvc" = PunkBuster Services
"QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1" = Assassins Creed IV Black Flag
"QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1" = Assassins Creed Unity
"rajče.net_is1" = rajče průvodce verze 1.59.42.257
"RjEyMDEz_is1" = F1 2013
"Rockstar Games Social Club" = Rockstar Games Social Club
"SPYWAREfighter" = SPYWAREfighter
"Steam App 10" = Counter-Strike
"Steam App 1250" = Killing Floor
"Steam App 245620" = Tropico 5
"Steam App 730" = Counter-Strike: Global Offensive
"Steam App 745" = Counter-Strike: Global Offensive - SDK
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer" = TeamViewer 10
"The Agency of Anomalies 3- The Last Performance CEFinal" = The Agency of Anomalies 3- The Last Performance CE
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"True Fear - Forsaken Souls Collector's EditionFinal" = True Fear - Forsaken Souls Collector's Edition
"U25pcGVyRWxpdGUz_is1" = Sniper Elite 3
"UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1" = Pro Evolution Soccer 2015
"UmF5bWFuTGVnZW5kcw==_is1" = Rayman Legends
"Update Engine" = Sony Ericsson Update Engine
"VGhlQW1hemluZ1NwaWRlck1hbjI=_is1" = The Amazing Spider-Man 2
"VGhlU2ltczQ=_is1" = The Sims 4
"VobSub" = VobSub 2.23
"Where Angels CryFinal" = Where Angels Cry
"WinRAR archiver" = WinRAR
"Xvid Video Codec 1.3.2" = Xvid Video Codec

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4021130684-3837087373-3470918577-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Funmoods" = Version Checker for Funmoods
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4021130684-3837087373-3470918577-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 30.4.2015 10:48:32 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0xc000041d Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x10d8 Čas spuštění chybující aplikace: 0x01d08349129888cf Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: f82c92cf-ef47-11e4-a720-0019dbb2d703

Error - 30.4.2015 12:34:16 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x2fc Čas spuštění chybující aplikace: 0x01d083628b2361d4 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: bdd8c02b-ef56-11e4-a720-0019dbb2d703

Error - 30.4.2015 14:17:34 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x1c44 Čas spuštění chybující aplikace: 0x01d0836fcd1bfdb2 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: 2c2cfd8c-ef65-11e4-a720-0019dbb2d703

Error - 30.4.2015 15:15:49 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x1da0 Čas spuštění chybující aplikace: 0x01d08372216d7855 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: 4f21da06-ef6d-11e4-a720-0019dbb2d703

Error - 30.4.2015 15:54:01 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0xe5c Čas spuštění chybující aplikace: 0x01d0837a9801c957 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: a5010cb5-ef72-11e4-a720-0019dbb2d703

Error - 1.5.2015 2:58:43 | Computer Name = BOZAK-Win7 | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 1.5.2015 2:59:57 | Computer Name = BOZAK-Win7 | Source = WinMgmt | ID = 10
Description =

Error - 1.5.2015 3:22:46 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x1154 Čas spuštění chybující aplikace: 0x01d083dcb9d291f6 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: dc88c1ad-efd2-11e4-8018-0019dbb2d703

Error - 1.5.2015 3:58:12 | Computer Name = BOZAK-Win7 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Název chybujícího modulu: GTA5.exe, verze: 1.0.350.1, časové razítko:
0x5540cf19 Kód výjimky: 0x80000003 Posun chyby: 0x0000000001132357 ID chybujícího
procesu: 0x10f0 Čas spuštění chybující aplikace: 0x01d083dfd757ffc1 Cesta k chybující
aplikaci: G:\GTA5.exe Cesta k chybujícímu modulu: G:\GTA5.exe ID zprávy: cff0b406-efd7-11e4-8018-0019dbb2d703

Error - 1.5.2015 4:24:04 | Computer Name = BOZAK-Win7 | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

[ Cisco AnyConnect Diagnostics and Reporting Tool Events ]
Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDelete File: .\implementations\helperUtil.cpp
Line:
487 Invoked Function: unlink_file Return Code: 5 (0x00000005) Description: Přístup
byl odepřen.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1516 Invoked Function: helperUtil::fileDelete Return Code: -23330807 (0xFE9C0009)
Description:
DARTENGINE_ERROR_UNEXPECTED

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1523 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1497 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

Error - 5.3.2013 10:58:01 | Computer Name = BOZAK-Win7 | Source = DART_GUI | ID = 67108866
Description = Function: helperUtil::fileDeleteDirectory File: .\implementations\helperUtil.cpp
Line:
1523 Invoked Function: ::RemoveDirectory Return Code: 145 (0x00000091) Description:
Adresář není prázdný.

[ Cisco AnyConnect Posture Module Events ]
Error - 18.2.2015 8:54:15 | Computer Name = BOZAK-Win7 | Source = ciscod | ID = 259
Description = [ciscod][error]acquired mutex.

Error - 18.2.2015 8:54:15 | Computer Name = BOZAK-Win7 | Source = ciscod | ID = 259
Description = [ciscod][error]acquired mutex.

Error - 18.2.2015 13:51:14 | Computer Name = BOZAK-Win7 | Source = ciscod | ID = 259
Description = [ciscod][error]acquired mutex.

Error - 18.2.2015 13:58:06 | Computer Name = BOZAK-Win7 | Source = cscan | ID = 259
Description = [cscan][error][cfg_process] prelogin failed..

Error - 18.2.2015 14:03:34 | Computer Name = BOZAK-Win7 | Source = cscan | ID = 259
Description = [cscan][error][cfg_process] prelogin failed..

Error - 18.2.2015 14:03:38 | Computer Name = BOZAK-Win7 | Source = cscan | ID = 259
Description = [cscan][error][cfg_process] prelogin failed..

Error - 31.3.2015 14:07:19 | Computer Name = BOZAK-Win7 | Source = cscan | ID = 259
Description = [cscan][error][cfg_process] prelogin failed..

Error - 31.3.2015 14:07:23 | Computer Name = BOZAK-Win7 | Source = cscan | ID = 259
Description = [cscan][error][cfg_process] prelogin failed..

Error - 11.4.2015 8:07:40 | Computer Name = BOZAK-Win7 | Source = hostscan_unknown | ID = 259
Description = [hostscan_unknown][error][hs_file_verify_with_killdate] unable to
verify file signature: (C:\Users\Božáèek\AppData\Roaming\Cisco\Cisco Secure Desktop\Cache\Temp8-P00h\cstub.ex).


Error - 11.4.2015 8:09:39 | Computer Name = BOZAK-Win7 | Source = hostscan_unknown | ID = 259
Description = [hostscan_unknown][error][hs_file_verify_with_killdate] unable to
verify file signature: (C:\Users\Božáèek\AppData\Roaming\Cisco\Cisco Secure Desktop\Cache\Temp8-P00h\cstub.ex).


[ Cisco AnyConnect Secure Mobility Client Events ]
Error - 1.5.2015 2:58:19 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108866
Description = Function: CCapiCertSmartcardStore::CCapiCertSmartcardStore File: .\Certificates\CapiCertSmartcardStore.cpp
Line:
39 Invoked Function: CCapiCertStore::CCapiCertStore Return Code: -32833517 (0xFE0B0013)
Description:
WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED

Error - 1.5.2015 2:58:19 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108866
Description = Function: CCollectiveCertStore::addCapiSmartcardStore File: .\Certificates\CollectiveCertStore.cpp
Line:
1630 Invoked Function: CCapiCertSmartcardStore::CCapiCertSmartcardStore Return Code:
-32833517 (0xFE0B0013) Description: WINSECAPI_ERROR_GETUSERIMPERSONATIONTOKEN_FAILED


Error - 1.5.2015 2:58:33 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108866
Description = Function: CHostConfigMgr::determinePublicAddrCandidateFromDefRoute
File:
.\HostConfigMgr.cpp Line: 1766 Invoked Function: CHostConfigMgr::FindDefaultRouteInterface
Return
Code: -24117215 (0xFE900021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED

Error - 1.5.2015 2:58:43 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 435 Invoked
Function: IRunnable::Run Return Code: -32112629 (0xFE16000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE


Error - 1.5.2015 3:00:13 | Computer Name = BOZAK-Win7 | Source = acvpnui | ID = 67108866
Description = Function: PreferenceMgr::loadPreferences File: .\PreferenceMgr.cpp Line:
1088 Invoked Function: PreferenceInfo::getPreference Return Code: 0 (0x00000000) Description:
LocalLanAccess

Error - 1.5.2015 3:00:13 | Computer Name = BOZAK-Win7 | Source = acvpnui | ID = 67108866
Description = Function: PreferenceMgr::loadPreferences File: .\PreferenceMgr.cpp Line:
1088 Invoked Function: PreferenceInfo::getPreference Return Code: 0 (0x00000000) Description:
EnableAutomaticServerSelection

Error - 1.5.2015 3:00:16 | Computer Name = BOZAK-Win7 | Source = acvpnui | ID = 67108865
Description = Function: ConnectMgr::activateConnectEvent File: .\ConnectMgr.cpp Line:
1352 NULL object. Cannot establish a connection at this time.

Error - 1.5.2015 3:03:18 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108865
Description = Function: CServicePluginMgr::GetSettings File: .\ServicePluginMgr.cpp
Line:
274 m_pIServicePlugin is NULL

Error - 1.5.2015 3:03:18 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108865
Description = Function: CServicePluginMgr::GetSettings File: .\ServicePluginMgr.cpp
Line:
274 m_pIServicePlugin is NULL

Error - 1.5.2015 3:03:18 | Computer Name = BOZAK-Win7 | Source = acvpnagent | ID = 67108865
Description = Function: CTelemetryPluginMgr::GetSettings File: .\TelemetryPluginMgr.cpp
Line:
311 m_pITelemetryPlugin is NULL

[ System Events ]
Error - 1.5.2015 3:22:19 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:22:26 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:22:31 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:35 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:39 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:43 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:46 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:49 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:57 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.

Error - 1.5.2015 3:57:59 | Computer Name = BOZAK-Win7 | Source = Disk | ID = 262151
Description = Zařízení \Device\Harddisk1\DR1 má chybný blok.


< End of report >

Jetě jsem to projel posledním Adwcleanerem. Taky to nezabralo...

Jen se zeptam pouzivate legalni operacni system, nejvyssi licence (v hodnote nejake tisic) Ultimate zrovna neni bezna domaci verze

Ono kdyz PC krmite crackama\keygenama a podobyma dobrotama, tak neni divu, ze to mate zaliskane...

Legální Win nebude. JJ máte pravdu, zkoušel sjem rozchodit synovi GTA V a vyzkoušet jestli nám to PC vezme než to koupím. Od té doby to je...

Pak je mi lito, ale nelegalnimi systemy se nezabyvame - pravidla fora nam hovori jasne stejne jako charta mezinarodni aliance ASAP jejiz jsme cleny...

Chápu. Děkuji i přes to.

Zkuste si pohledat Zoek a MBAM a temi to projet...Vice bohuzel poradit nemuzu...