VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=146751

Stránka 1 z 1

Prosím o kontrolu logu

Napsal: 06 lis 2015 21:05
od ma.jo
Zdravím, pc po spustení nereaguje, hlavný panel ani ikony nejdú spustiť. Najskôr to robilo len občas, teraz som už musel v save mod obnoviť systém o pár dní nazad, aby sa dalo s počítačom pracovať, no problém sa aj tak väčšinou po pár minútach znovu objaví.

Logfile of random's system information tool 1.10 (written by random/random)
Run by ToM at 2015-11-06 20:43:11
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 159 GB (33%) free of 477 GB
Total RAM: 3575 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:43:14, on 6. 11. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\ToM\Desktop\RSIT.exe
C:\Program Files\trend micro\ToM.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Spyware Terminator 2015 Internet Guard - {82A76710-4F98-4957-92BE-99648A4E2475} - C:\PROGRA~1\SPYWAR~1\STINTE~1.DLL
O2 - BHO: ???????@Mail.Ru - {8984B388-A5BB-4DF7-B274-77B879E179DB} - (no file)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-21-3048799603-1129691480-120217510-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3048799603-1129691480-120217510-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler Group - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Unknown owner - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (file missing)
O23 - Service: Windows optimizer (WinOptimizer) - Unknown owner - C:\Windows\system32\winopt.exe (file missing)

--
End of file - 6243 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c

=========Mozilla firefox=========

ProfilePath - C:\Users\ToM\AppData\Roaming\Mozilla\Firefox\Profiles\ok13uiwk.default

prefs.js - "browser.search.useDBForOrder" - false

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"detgdp@gmail.com"=C:\Users\ToM\AppData\Roaming\Mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13]
"Description"=15.0.1.13
"Path"=c:\program files\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
npwachk.dll
nsjsrealplayerplugin.xpt
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\ToM\AppData\Roaming\Mozilla\Firefox\Profiles\ok13uiwk.default\extensions\
detgdp@gmail.com
{3d7eb24f-2740-49df-8937-200b1cc08f8a}

C:\Users\ToM\AppData\Roaming\Mozilla\Firefox\Profiles\ok13uiwk.default\searchplugins\
mailru---.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-02-02 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475}]
Spyware Terminator 2015 Internet Guard - C:\PROGRA~1\SPYWAR~1\STINTE~1.DLL [2015-07-28 1255248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-01-04 10021480]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-07-31 43816]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-14 1028384]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2015-07-28 3884368]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2015-09-02 5473104]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-09-01 152392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2010-11-24 2155832]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2011-08-15 233888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-11-06 20:40:38 ----D---- C:\rsit
2015-11-06 20:40:38 ----D---- C:\Program Files\trend micro
2015-11-01 14:10:41 ----D---- C:\Program Files\Life Is Strange Episode 5
2015-11-01 13:53:51 ----D---- C:\Users\ToM\AppData\Roaming\Steam
2015-10-31 10:12:58 ----D---- C:\ProgramData\Package Cache
2015-10-24 09:57:21 ----D---- C:\Program Files\Crytek
2015-10-10 14:53:23 ----D---- C:\Program Files\NHL 09

======List of files/folders modified in the last 1 month======

2015-11-06 20:42:40 ----A---- C:\Windows\win.ini
2015-11-06 20:42:14 ----D---- C:\ProgramData\Spyware Terminator
2015-11-06 20:42:02 ----D---- C:\Windows\System32
2015-11-06 20:42:02 ----D---- C:\Windows\inf
2015-11-06 20:42:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-06 20:41:33 ----D---- C:\Windows\temp
2015-11-06 20:41:33 ----D---- C:\Program Files\Opera
2015-11-06 20:40:38 ----RD---- C:\Program Files
2015-11-06 20:38:51 ----D---- C:\Windows
2015-11-06 20:36:21 ----D---- C:\ProgramData\NVIDIA
2015-11-06 20:36:20 ----D---- C:\Windows\system32\wfp
2015-11-06 20:36:19 ----D---- C:\Windows\system32\wbem
2015-11-06 20:35:45 ----D---- C:\Windows\system32\config
2015-11-06 20:35:38 ----SHD---- C:\Windows\Installer
2015-11-06 20:35:38 ----D---- C:\Windows\Tasks
2015-11-06 20:35:38 ----D---- C:\Windows\system32\DriverStore
2015-11-06 20:35:38 ----D---- C:\Windows\system32\catroot2
2015-11-06 20:35:32 ----D---- C:\Windows\registration
2015-11-06 20:16:51 ----SHD---- C:\System Volume Information
2015-11-05 16:54:24 ----D---- C:\ProgramData\GFACE
2015-11-04 09:19:51 ----D---- C:\Windows\Prefetch
2015-11-01 14:04:25 ----A---- C:\Users\ToM\AppData\Roaming\bitlord_log.txt
2015-11-01 14:02:39 ----D---- C:\Users\ToM\AppData\Roaming\BitLord
2015-10-31 10:14:10 ----RSD---- C:\Windows\assembly
2015-10-31 10:13:11 ----D---- C:\Config.Msi
2015-10-31 10:12:58 ----D---- C:\ProgramData
2015-10-28 09:08:25 ----D---- C:\Windows\system32\Tasks
2015-10-14 17:23:27 ----D---- C:\Program Files\Steam

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 18544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-19 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-06-17 218688]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 50704]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-01-26 32256]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-01-26 52224]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-01-04 3358120]
R3 MEI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2010-09-21 41088]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2014-11-17 162592]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2013-11-14 33568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-12-24 327784]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 ALSysIO;ALSysIO; \??\C:\Users\ToM\AppData\Local\Temp\ALSysIO.sys []
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 s716bus;Sony Ericsson Device 716 driver (WDM); C:\Windows\system32\DRIVERS\s716bus.sys [2007-04-04 83208]
S3 s716mdfl;Sony Ericsson Device 716 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s716mdfl.sys [2007-04-04 15112]
S3 s716mdm;Sony Ericsson Device 716 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s716mdm.sys [2007-04-04 108552]
S3 s716mgmt;Sony Ericsson Device 716 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s716mgmt.sys [2007-04-04 100360]
S3 s716obex;Sony Ericsson Device 716 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s716obex.sys [2007-04-04 98568]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-07-28 45056]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-12 82112]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-08-28 43336]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-14 14652704]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-11-12 672064]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-11-14 1914656]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2015-07-01 1998672]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-11-12 410768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-09-01 553288]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service []
S2 WinOptimizer;Windows optimizer; C:\Windows\system32\winopt.exe []
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-08-13 833728]
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2013-11-06 758224]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 06 lis 2015 21:43
od Rudy
Zdravím!
Jak je na tom váš oper. systém s legalitou?

Re: Prosím o kontrolu logu

Napsal: 06 lis 2015 21:52
od ma.jo
PC mi skladal jeden známy a pokiaľ viem windows by mal byť legálny.

Re: Prosím o kontrolu logu

Napsal: 06 lis 2015 21:59
od Rudy
OK. Zkusíme tento sken:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
a klikněte na >Prohledat<. Dejte oba logy.

Re: Prosím o kontrolu logu

Napsal: 11 lis 2015 09:53
od ma.jo
OTL logfile created on: 11. 11. 2015 9:16:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ToM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,49 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 52,65% Memory free
6,98 Gb Paging File | 5,07 Gb Available in Paging File | 72,69% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 150,94 Gb Free Space | 32,41% Space Free | Partition Type: NTFS

Computer Name: TOM-PC | User Name: ToM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2015/11/11 08:54:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ToM\Desktop\OTL.exe
PRC - [2015/10/20 15:08:28 | 000,811,848 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2015/09/16 07:14:27 | 000,245,576 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
PRC - [2015/09/02 22:23:10 | 005,473,104 | ---- | M] (Crawler Group, LLC) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
PRC - [2015/07/28 21:27:06 | 003,884,368 | ---- | M] (Crawler Group, LLC) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
PRC - [2015/07/01 04:13:00 | 001,998,672 | ---- | M] (Crawler Group) -- C:\Program Files\Spyware Terminator\st_rsser.exe
PRC - [2015/06/12 08:25:00 | 000,082,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/11/12 22:43:24 | 000,977,216 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2014/11/12 22:43:23 | 001,819,456 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014/11/12 21:50:53 | 000,410,768 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/11/14 12:57:42 | 014,652,704 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2013/11/14 12:57:31 | 001,028,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/11/14 12:57:21 | 001,914,656 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2011/03/18 18:55:52 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/01/20 10:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2010/11/30 12:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/20 03:17:48 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/20 03:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 03:17:02 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2010/11/11 11:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2010/11/11 11:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe


========== Modules (No Company Name) ==========

MOD - [2015/10/20 15:08:24 | 001,532,744 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\46.0.2490.80\libglesv2.dll
MOD - [2015/10/20 15:08:22 | 000,081,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\46.0.2490.80\libegl.dll
MOD - [2014/07/31 12:16:44 | 000,073,544 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014/07/31 12:16:12 | 001,044,776 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/11/19 21:05:55 | 007,083,168 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/05/28 21:04:56 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011/03/18 18:55:52 | 001,874,904 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Windows\system32\winopt.exe -- (WinOptimizer)
SRV - File not found [Auto | Stopped] -- C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -- (WindowsMangerProtect)
SRV - [2015/07/01 04:13:00 | 001,998,672 | ---- | M] (Crawler Group) [Auto | Running] -- C:\Program Files\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2015/06/12 08:25:00 | 000,082,112 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/11/12 21:50:53 | 000,410,768 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/08/13 23:30:50 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/11/14 12:57:42 | 014,652,704 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013/11/14 12:57:21 | 001,914,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/11/06 18:30:44 | 000,758,224 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2010/11/11 11:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2010/11/11 11:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/04/06 15:30:38 | 000,031,272 | ---- | M] () [Disabled | Stopped] -- C:\Windows\System32\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\CDriver.sys -- (MSICDSetup)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt -- (EverestDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\ToM\AppData\Local\Temp\ALSysIO.sys -- (ALSysIO)
DRV - [2015/11/11 08:41:32 | 000,039,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CDB64F68-71E2-47F4-B2EC-6710FEB3B865}\MpKslc97811e6.sys -- (MpKslc97811e6)
DRV - [2014/11/17 23:18:11 | 000,162,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2014/11/13 01:14:51 | 010,911,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013/11/14 12:57:56 | 000,033,568 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2011/06/21 10:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2011/06/17 14:36:38 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/01/26 07:06:06 | 000,032,256 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EtronHub3.sys -- (EtronHub3)
DRV - [2011/01/26 07:06:04 | 000,052,224 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV - [2011/01/10 17:16:16 | 000,018,544 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010/11/20 03:30:16 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 03:30:16 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 03:30:16 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 01:24:42 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 01:21:16 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 00:59:46 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 00:14:46 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 00:14:42 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/24 20:25:38 | 000,054,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/10/24 20:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/09/21 08:59:02 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2010/01/27 03:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (npf)
DRV - [2009/09/16 07:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901t.sys -- (tap0901t)
DRV - [2009/07/14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007/04/04 11:43:36 | 000,098,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s716obex.sys -- (s716obex)
DRV - [2007/04/04 11:43:34 | 000,108,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s716mdm.sys -- (s716mdm)
DRV - [2007/04/04 11:43:34 | 000,100,360 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s716mgmt.sys -- (s716mgmt)
DRV - [2007/04/04 11:43:32 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s716mdfl.sys -- (s716mdfl)
DRV - [2007/04/04 11:43:20 | 000,083,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s716bus.sys -- (s716bus)
DRV - [2007/02/16 01:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ElbyCDFL.sys -- (ElbyCDFL)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1B D8 3D 7C 15 2C CC 01 [binary data]
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

========== FireFox ==========

FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..extensions.enabledAddons: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3
FF - prefs.js..extensions.enabledAddons: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.17
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre1.8.0_31\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/02/02 11:09:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\detgdp@gmail.com: C:\Users\ToM\AppData\Roaming\Mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com [2014/12/26 08:20:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014/12/18 09:31:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/12/18 09:31:16 | 000,000,000 | ---D | M]

[2011/06/16 12:19:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Extensions
[2015/02/07 10:25:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions
[2015/02/07 10:25:55 | 000,000,000 | ---D | M] (Flashblock) -- C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2014/12/26 08:20:48 | 000,000,000 | ---D | M] ("Security Protection") -- C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com
[2011/07/03 13:52:52 | 000,023,073 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\imgflashblocker@shimon.chohen.xpi
[2012/06/04 17:33:54 | 000,030,312 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi
[2012/05/05 10:40:58 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2011/11/30 15:34:00 | 000,001,533 | ---- | M] () -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\searchplugins\mailru---.xml
[2012/07/24 19:59:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/03/18 18:55:52 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/03/22 19:38:12 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010/01/01 09:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2010/01/01 09:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010/01/01 09:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2010/01/01 09:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2010/01/01 09:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2014/05/28 07:41:42 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spyware Terminator 2015 Internet Guard) - {82A76710-4F98-4957-92BE-99648A4E2475} - C:\Program Files\Spyware Terminator\STInternetGuard.dll (Crawler Group, LLC)
O2 - BHO: (no name) - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler Group, LLC)
O4 - HKLM..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler Group, LLC)
O4 - HKU\S-1-5-21-3048799603-1129691480-120217510-1000..\Run: [ccleaner] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-3048799603-1129691480-120217510-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3048799603-1129691480-120217510-1002..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-3048799603-1129691480-120217510-1002\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\..Trusted Domains: localhost ([]http in Internet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 11.31.2)
O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 1.8.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinsta ... s-i586.cab (Java Plug-in 1.8.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.75.71.141 217.75.71.142
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1D2228EB-8F05-43B7-905D-D7A0FC61BF1F}: DhcpNameServer = 217.75.71.141 217.75.71.142
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22 - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/10/13 18:11:56 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2015/11/11 08:54:15 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\ToM\Desktop\OTL.exe
[2015/11/06 20:40:38 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015/11/06 20:40:38 | 000,000,000 | ---D | C] -- C:\rsit
[2015/11/05 16:54:17 | 000,000,000 | ---D | C] -- C:\Users\ToM\AppData\Local\wf-launcher
[2015/11/01 14:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange Episode 5
[2015/11/01 14:10:41 | 000,000,000 | ---D | C] -- C:\Program Files\Life Is Strange Episode 5
[2015/11/01 13:53:51 | 000,000,000 | ---D | C] -- C:\Users\ToM\AppData\Roaming\Steam
[2015/10/31 11:43:36 | 000,000,000 | ---D | C] -- C:\Users\ToM\Documents\CPY_SAVES
[2015/10/31 10:35:58 | 000,000,000 | ---D | C] -- C:\Users\ToM\AppData\Local\EMU
[2015/10/31 10:12:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2015/10/31 08:49:36 | 000,000,000 | ---D | C] -- C:\Users\ToM\Desktop\Life.Is.Strange.Episode.5
[2015/10/24 09:57:22 | 000,000,000 | ---D | C] -- C:\Users\ToM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warface Launcher
[2015/10/24 09:57:21 | 000,000,000 | ---D | C] -- C:\Program Files\Crytek
[2014/10/13 17:43:21 | 001,512,352 | ---- | C] (Object Browser) -- C:\Users\ToM\AppData\Roaming\RIA.exe
[2014/10/13 17:42:42 | 001,979,808 | ---- | C] (Object Browser) -- C:\Users\ToM\AppData\Roaming\TPORYVRW.exe
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2015/11/11 09:19:31 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/11/11 08:54:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ToM\Desktop\OTL.exe
[2015/11/11 08:30:22 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/11/11 08:30:22 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/11/11 08:30:00 | 000,656,454 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/11/11 08:30:00 | 000,122,226 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/11/11 08:25:17 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/11/11 08:25:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/11/11 08:24:59 | 2811,682,816 | -HS- | M] () -- C:\hiberfil.sys
[2015/11/01 14:25:57 | 000,001,346 | ---- | M] () -- C:\Users\ToM\Desktop\Life Is Strange Episode 5.lnk
[2015/11/01 14:03:21 | 000,000,218 | ---- | M] () -- C:\Users\ToM\AppData\Local\recently-used.xbel
[2015/10/31 11:05:37 | 000,002,237 | ---- | M] () -- C:\Users\ToM\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/10/29 23:22:16 | 000,000,942 | ---- | M] () -- C:\Users\ToM\Desktop\nhl2009 - odkaz.lnk
[2015/10/24 09:57:24 | 000,001,874 | ---- | M] () -- C:\Users\ToM\Desktop\Warface Launcher.lnk
[2015/10/14 08:07:46 | 000,000,162 | -H-- | M] () -- C:\Users\ToM\Desktop\~$_bezuhonnost_spolahlivost.rtf
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2015/11/06 22:15:04 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/11/01 14:25:57 | 000,001,346 | ---- | C] () -- C:\Users\ToM\Desktop\Life Is Strange Episode 5.lnk
[2015/11/01 14:03:21 | 000,000,218 | ---- | C] () -- C:\Users\ToM\AppData\Local\recently-used.xbel
[2015/10/29 23:22:16 | 000,000,942 | ---- | C] () -- C:\Users\ToM\Desktop\nhl2009 - odkaz.lnk
[2015/10/24 09:57:23 | 000,001,874 | ---- | C] () -- C:\Users\ToM\Desktop\Warface Launcher.lnk
[2015/10/14 08:07:46 | 000,000,162 | -H-- | C] () -- C:\Users\ToM\Desktop\~$_bezuhonnost_spolahlivost.rtf
[2014/10/30 09:43:52 | 000,000,583 | ---- | C] () -- C:\Windows\webtran4.INI
[2014/10/13 18:47:27 | 000,032,768 | ---- | C] () -- C:\Windows\System32\drivers\sp_rsdrv2.sys
[2014/09/01 09:18:44 | 000,002,086 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\RIA
[2014/09/01 09:18:44 | 000,001,248 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\TPORYVRW
[2014/04/19 09:57:38 | 000,000,000 | -HS- | C] () -- C:\Users\ToM\AppData\Local\LumaEmu
[2014/02/28 21:28:10 | 000,004,535 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\CamStudio.cfg
[2014/02/28 21:28:10 | 000,000,408 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\CamShapes.ini
[2014/02/28 21:28:10 | 000,000,408 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\CamLayout.ini
[2014/02/28 21:28:10 | 000,000,101 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\Camdata.ini
[2014/02/28 21:27:27 | 000,000,096 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\version2.xml
[2014/01/26 18:28:34 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat
[2013/12/12 09:39:48 | 000,148,891 | ---- | C] () -- C:\Windows\hpoins19.dat
[2013/03/30 12:16:02 | 000,000,004 | ---- | C] () -- C:\Users\ToM\AppData\Roaming\AltShell.ini
[2011/10/23 20:35:57 | 000,007,597 | ---- | C] () -- C:\Users\ToM\AppData\Local\Resmon.ResmonCfg
[2011/06/16 16:47:44 | 000,001,368 | ---- | C] () -- C:\Users\ToM\AppData\Local\SRDownloader.nast
[2011/06/16 16:47:40 | 000,076,503 | ---- | C] () -- C:\Users\ToM\AppData\Local\SRDownloader.err

========== ZeroAccess Check ==========

[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010/11/20 03:21:20 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 03:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/11/23 08:50:49 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\11bitstudios
[2014/02/28 11:48:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\4Media
[2011/07/10 19:07:13 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\AnvSoft
[2015/05/09 18:24:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Audacity
[2015/11/01 14:02:39 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BitLord
[2014/09/01 22:23:56 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BitTorrent
[2015/02/16 16:41:06 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BSplayer PRO
[2011/06/22 09:48:57 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\DAEMON Tools Lite
[2015/02/16 16:45:42 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\DVDVideoSoft
[2011/06/24 07:20:59 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\FreeFLVConverter
[2011/06/22 10:44:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\GameRanger
[2011/07/03 13:09:01 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\GetRightToGo
[2014/03/16 15:34:21 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\gtk-2.0
[2013/04/19 15:23:10 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Hive Cluster
[2014/03/12 15:56:44 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Image Zone Express
[2011/08/06 15:37:40 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\LangSoft
[2011/06/22 08:52:12 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Leadertech
[2015/02/16 16:42:01 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\MAXON
[2011/11/18 20:42:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\MetaProducts
[2014/02/28 15:04:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Milestone
[2011/06/16 12:20:03 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Opera
[2015/01/16 20:20:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Opera Software
[2014/10/24 12:30:21 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Origin
[2013/12/12 10:13:06 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Printer Info Cache
[2014/01/26 11:02:03 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Python-Eggs
[2011/08/02 18:31:24 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SecondLife
[2014/10/13 18:30:39 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Seznam.cz
[2011/11/30 15:05:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SkyMonk
[2015/01/31 18:22:26 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SpinTires
[2014/10/13 18:47:27 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Spyware Terminator
[2015/11/01 13:53:51 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Steam
[2014/02/19 12:15:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\steamvr
[2014/01/26 20:10:46 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Tunngle

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/14 05:53:46 | 000,032,538 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/07/14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2011/06/19 11:09:49 | 000,000,920 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

< >

< MD5 for: ATAPI.SYS >
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010/11/20 03:16:56 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010/11/20 03:16:56 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010/11/19 23:38:12 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010/11/19 23:38:12 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010/11/19 23:38:12 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011/02/26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010/11/20 03:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\explorer.exe
[2010/11/20 03:17:10 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe

< MD5 for: HAL.DLL >
[2010/11/20 03:29:54 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010/11/20 03:29:54 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009/07/14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: SCECLI.DLL >
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010/11/20 03:21:06 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010/11/20 03:21:06 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SERVICES.EXE >
[2009/07/14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2011/04/25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011/06/21 06:34:23 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=04E4A7D53A7ACE02E8C55B17A498F631 -- C:\Windows\SoftwareDistribution\Download\6392315e009bc41cb48cdfafa6d1fcc1\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_b513df73c4b4f466\tcpip.sys
[2011/04/25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009/07/14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010/11/20 03:30:14 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\System32\drivers\tcpip.sys
[2010/11/20 03:30:14 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2011/04/25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2011/04/25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2011/06/21 06:30:45 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=93C444D118B184452132357C322124CD -- C:\Windows\SoftwareDistribution\Download\6392315e009bc41cb48cdfafa6d1fcc1\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_b3703df4e0e237e0\tcpip.sys
[2011/06/21 06:39:53 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=C2DAAEB48F3A47C410B041A0D2382EE1 -- C:\Windows\SoftwareDistribution\Download\6392315e009bc41cb48cdfafa6d1fcc1\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_b32e82b7c78da1d1\tcpip.sys
[2011/06/21 07:54:00 | 001,303,424 | ---- | M] (Microsoft Corporation) MD5=DEC4940487050AE13C60C86F40E07E75 -- C:\Windows\SoftwareDistribution\Download\6392315e009bc41cb48cdfafa6d1fcc1\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_b583db3edde666b6\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/20 03:17:50 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 03:17:50 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 03:17:56 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 03:17:56 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009/07/14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< >

< %systemroot%*.* /U /s >
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\04f916c5ef03037217eb8604680bc44b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\04f916c5ef03037217eb8604680bc44b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1b159531194e903aea1b85efef8125b9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1b159531194e903aea1b85efef8125b9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2e8174611b26719709f1c6d6a9a8403d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2e8174611b26719709f1c6d6a9a8403d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3b21a2d3980465e5aa37f352f7f9663e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3b21a2d3980465e5aa37f352f7f9663e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\40796e204a673bce7f68d3a05d08f47c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\40796e204a673bce7f68d3a05d08f47c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\766c90f28453d6ea3ec22257cddfa1d3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\766c90f28453d6ea3ec22257cddfa1d3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\79503a7502d1ed9c9a2120e88c7c6964\*.tmp files -> C:\Windows\SoftwareDistribution\Download\79503a7502d1ed9c9a2120e88c7c6964\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8c849dbc35a7abec5c09bf3951ecc5ba\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8c849dbc35a7abec5c09bf3951ecc5ba\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a3f5bfb22f349383c8dc3adf0dae0086\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a3f5bfb22f349383c8dc3adf0dae0086\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e9716166c82c68e40688b67bc0ecc0f5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e9716166c82c68e40688b67bc0ecc0f5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f427c089ef210d78ac5e362345918f47\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f427c089ef210d78ac5e362345918f47\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f47bf45e399c16d4ba482b59777a6b8b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f47bf45e399c16d4ba482b59777a6b8b\*.tmp -> ]
[34 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014/11/23 08:50:49 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\11bitstudios
[2014/02/28 11:48:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\4Media
[2011/06/16 11:38:28 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Adobe
[2011/07/10 19:27:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Ahead
[2011/07/10 19:07:13 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\AnvSoft
[2014/12/22 13:39:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Apple Computer
[2015/05/09 18:24:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Audacity
[2015/11/01 14:02:39 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BitLord
[2014/09/01 22:23:56 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BitTorrent
[2015/02/16 16:41:06 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\BSplayer PRO
[2011/06/22 09:48:57 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\DAEMON Tools Lite
[2015/02/16 16:36:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\DVD Flick
[2015/02/16 16:45:42 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\DVDVideoSoft
[2011/06/24 07:20:59 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\FreeFLVConverter
[2011/06/22 10:44:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\GameRanger
[2011/07/03 13:09:01 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\GetRightToGo
[2014/03/16 15:34:21 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\gtk-2.0
[2013/04/19 15:23:10 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Hive Cluster
[2011/06/16 17:23:52 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Identities
[2014/03/12 15:56:44 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Image Zone Express
[2011/06/16 17:27:38 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\InstallShield
[2011/08/06 15:37:40 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\LangSoft
[2011/06/22 08:52:12 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Leadertech
[2011/06/16 14:40:57 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Macromedia
[2015/02/16 16:42:01 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\MAXON
[2009/07/14 08:48:45 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Media Center Programs
[2011/11/18 20:42:09 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\MetaProducts
[2014/04/19 09:58:35 | 000,000,000 | --SD | M] -- C:\Users\ToM\AppData\Roaming\Microsoft
[2014/02/28 15:04:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Milestone
[2011/07/10 18:57:15 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Mozilla
[2011/07/10 19:27:01 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Nero
[2011/11/02 20:12:45 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\NVIDIA
[2011/06/16 12:20:03 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Opera
[2015/01/16 20:20:43 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Opera Software
[2014/10/24 12:30:21 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Origin
[2013/12/12 10:13:06 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Printer Info Cache
[2014/01/26 11:02:03 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Python-Eggs
[2014/12/18 09:31:24 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Real
[2014/12/18 09:31:35 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\RealNetworks
[2011/08/02 18:31:24 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SecondLife
[2011/10/15 11:58:36 | 000,000,000 | R--D | M] -- C:\Users\ToM\AppData\Roaming\SecuROM
[2014/10/13 18:30:39 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Seznam.cz
[2011/11/30 15:05:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SkyMonk
[2015/01/31 18:22:26 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\SpinTires
[2014/10/13 18:47:27 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Spyware Terminator
[2015/11/01 13:53:51 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Steam
[2014/02/19 12:15:14 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\steamvr
[2014/01/26 20:10:46 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Tunngle
[2015/08/24 12:14:26 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\vlc
[2014/10/30 13:24:21 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\Winamp
[2011/06/17 14:00:17 | 000,000,000 | ---D | M] -- C:\Users\ToM\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014/10/13 17:43:21 | 001,512,352 | ---- | M] (Object Browser) -- C:\Users\ToM\AppData\Roaming\RIA.exe
[2014/10/13 17:42:42 | 001,979,808 | ---- | M] (Object Browser) -- C:\Users\ToM\AppData\Roaming\TPORYVRW.exe
[2012/02/28 16:47:24 | 001,457,888 | ---- | M] (GameRanger Technologies) -- C:\Users\ToM\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
[2013/07/24 11:16:58 | 000,010,134 | R--- | M] () -- C:\Users\ToM\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2012/08/11 17:52:40 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
[2012/09/25 18:53:39 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg1\rnupgagent.exe
[2013/01/31 14:14:55 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg12\rnupgagent.exe
[2013/03/24 17:44:48 | 000,448,592 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg13\rnupgagent.exe
[2013/04/18 19:00:59 | 000,448,592 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg16\rnupgagent.exe
[2013/06/24 21:31:24 | 000,468,560 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg19\rnupgagent.exe
[2013/07/07 07:00:02 | 000,468,560 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg20\rnupgagent.exe
[2013/08/30 09:08:37 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg23\rnupgagent.exe
[2013/09/08 17:35:52 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg24\rnupgagent.exe
[2012/10/14 19:55:15 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg3\rnupgagent.exe
[2013/11/24 13:31:52 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg31\rnupgagent.exe
[2014/02/15 20:36:26 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg34\rnupgagent.exe
[2014/03/26 00:00:57 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg35\rnupgagent.exe
[2014/04/12 07:48:19 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg37\rnupgagent.exe
[2014/04/20 07:48:36 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg38\rnupgagent.exe
[2014/05/14 07:48:59 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg41\rnupgagent.exe
[2014/05/23 07:49:08 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg42\rnupgagent.exe
[2014/06/25 14:11:14 | 000,503,376 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg43\rnupgagent.exe
[2014/09/18 07:20:05 | 000,504,912 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg44\rnupgagent.exe
[2014/09/30 13:54:49 | 000,504,912 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg45\rnupgagent.exe
[2014/10/16 19:13:48 | 000,504,912 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg47\rnupgagent.exe
[2014/12/08 21:33:38 | 000,525,904 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg48\rnupgagent.exe
[2012/12/16 10:47:07 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg6\rnupgagent.exe
[2013/01/07 11:17:29 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\temp\~Upg9\rnupgagent.exe
[2014/12/08 21:33:38 | 000,525,904 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.03\agent\rnupgagent.exe
[2014/12/09 20:22:38 | 001,077,968 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ToM\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.03\agent\stub_exe\RealPlayerCloud.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2015/11/11 08:25:17 | 000,000,920 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010/10/24 20:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\MpNWMon.sys

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2015/11/11 08:30:22 | 000,014,016 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/11/11 08:30:22 | 000,014,016 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/11/11 08:30:00 | 000,122,226 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2015/11/11 08:30:00 | 000,656,454 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2015/11/11 08:30:00 | 000,785,526 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ccleaner" = "C:\Program Files\CCleaner\CCleaner.exe" /AUTO -- [2010/11/24 16:52:46 | 002,155,832 | ---- | M] (Piriform Ltd)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2011/01/20 10:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2011/03/18 18:55:52 | 000,924,632 | ---- | M] (Mozilla Corporation) MD5=7AAF26E5CEC48A364FAB61A3505668FB -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2011/06/16 12:15:53 | 000,748,336 | ---- | M] (Microsoft Corporation) MD5=904E13BA41AF2E353A32CF351CA53639 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012/05/26 19:32:00 | 000,949,104 | ---- | M] (Opera Software) MD5=E8F78F11945EE6F91408C99AF15143EA -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2015/10/20 15:08:28 | 000,811,848 | ---- | M] (Google Inc.) MD5=0BE64FAB577BFA54443C680343AEC85F -- C:\Program Files\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015/11/11 09:19:31 | 000,000,512 | ---- | M] () MD5=FD72A8B82E86A6A3113C917A89E3B696 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013/10/15 10:09:17 | 029,347,328 | ---- | M] () -- \Program Files\Electronic Arts\FIFA 14\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe
[2013/10/15 09:14:21 | 000,000,032 | ---- | M] () -- \Program Files\Electronic Arts\FIFA 14\FIFA 14\Game\SKIDROWCRACK.COM.txt
[2010/10/04 21:50:56 | 000,062,238 | ---- | M] () -- \Program Files\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
[2013/01/01 01:00:00 | 000,166,400 | ---- | M] () -- \Program Files\Metro Last Light\cracktro.exe
[2015/10/10 15:07:58 | 000,000,306 | ---- | M] () -- \Users\ToM\AppData\Roaming\Microsoft\Windows\Recent\Crack (2).lnk
[2013/10/28 20:25:10 | 029,348,451 | ---- | M] () -- \Users\ToM\Desktop\Súbory\FIFA-14-CRACK-V4.rar
[2014/08/21 09:35:54 | 864,859,092 | ---- | M] () -- \Users\ToM\Desktop\Súbory\ETS saves\HRA\Euro-Truck-Simulator-2-GOLD-s-crackem-(1.12.1)-by-studna261.rar

< *keygen* /s >

< *loader* /s >
[2013/05/16 15:41:22 | 001,152,288 | ---- | M] () -- \NVIDIA\DisplayDriver\320.18\Win8_WinVista_Win7\International\GFExperience\ExtensionLoader.dll
[2013/05/16 15:41:22 | 001,152,288 | ---- | M] () -- \NVIDIA\DisplayDriver\320.49\Win8_WinVista_Win7\International\GFExperience\ExtensionLoader.dll
[2013/11/14 12:57:27 | 001,168,672 | ---- | M] () -- \NVIDIA\DisplayDriver\331.82\Win8_WinVista_Win7\International\GFExperience\ExtensionLoader.dll
[2013/11/14 12:57:27 | 001,168,672 | ---- | M] () -- \NVIDIA\DisplayDriver\GeForceGameReadyDriver\ExtensionLoader.dll
[2014/11/17 21:03:25 | 001,171,272 | ---- | M] () -- \NVIDIA\DisplayDriver\GeForceGameReadyDriver\GFExperience\ExtensionLoader.dll
[2013/11/14 10:48:25 | 000,397,674 | ---- | M] () -- \Program Files\Assassins Creed IV - Black Flag\downloader.exe
[2013/11/13 11:45:01 | 000,000,104 | ---- | M] () -- \Program Files\Assassins Creed IV - Black Flag\Downloader.ini
[2013/11/14 18:57:21 | 000,434,176 | ---- | M] () -- \Program Files\Assassins Creed IV - Black Flag\uplay_r1_loader.dll
[2012/02/07 17:11:22 | 000,008,192 | ---- | M] () -- \Program Files\BitLord 2\Bitlord files\_win32sysloader.pyd
[2013/08/27 11:42:52 | 000,005,612 | ---- | M] () -- \Program Files\BitLord 2\Bitlord files\deluge-2.3.2_245-py2.6.egg\deluge\httpdownloader.pyc
[2011/07/06 13:32:14 | 000,001,878 | ---- | M] () -- \Program Files\BitLord 2\Bitlord files\etc\gtk-2.0\gdk-pixbuf.loaders
[2011/07/06 13:32:14 | 000,014,336 | ---- | M] () -- \Program Files\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2007/06/27 18:03:00 | 000,177,448 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2014/07/31 12:16:28 | 000,007,281 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2006/10/26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2014/11/18 10:40:12 | 000,047,847 | ---- | M] () -- \Program Files\Crytek\Warface Launcher\live\img\loader_color.gif
[2015/05/01 08:04:18 | 000,000,022 | ---- | M] () -- \Program Files\Electronic Arts\FIFA 14\FIFA 14\Game\3DMLoader.ini
[2014/10/15 22:23:59 | 000,001,924 | ---- | M] () -- \Program Files\F1 2014\ai\track_statistics_loader.xml
[2014/10/15 22:23:59 | 000,000,115 | ---- | M] () -- \Program Files\F1 2014\audio\audio_loader.xml
[2014/10/15 22:24:04 | 000,000,342 | ---- | M] () -- \Program Files\F1 2014\scenes\garage_loader.xml
[2014/10/15 22:24:04 | 000,001,042 | ---- | M] () -- \Program Files\F1 2014\scenes\paddock_gameloader.xml
[2014/10/15 22:24:04 | 000,000,645 | ---- | M] () -- \Program Files\F1 2014\scenes\paddock_loader.xml
[2014/10/15 22:24:04 | 000,001,986 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader.xml
[2014/10/15 22:24:04 | 000,001,832 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_gaqa.xml
[2014/10/15 22:24:04 | 000,001,830 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_gara.xml
[2014/10/15 22:24:04 | 000,001,831 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_gate.xml
[2014/10/15 22:24:04 | 000,001,807 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_gate_nt.xml
[2014/10/15 22:24:04 | 000,001,832 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_gawc.xml
[2014/10/15 22:24:04 | 000,002,060 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_pfqa.xml
[2014/10/15 22:24:04 | 000,002,060 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_pfra.xml
[2014/10/15 22:24:04 | 000,002,058 | ---- | M] () -- \Program Files\F1 2014\scenes\parcferme_loader_pfwc.xml
[2014/10/15 22:24:04 | 000,000,629 | ---- | M] () -- \Program Files\F1 2014\scenes\pitstop_loader.xml
[2014/10/15 22:24:04 | 000,000,722 | ---- | M] () -- \Program Files\F1 2014\scenes\race_marshal_loader.xml
[2014/10/15 22:24:04 | 000,001,587 | ---- | M] () -- \Program Files\F1 2014\scenes\trackside_garage_loader.xml
[2014/10/15 22:24:04 | 000,001,578 | ---- | M] () -- \Program Files\F1 2014\scenes\trackside_garage_reloader.xml
[2014/10/15 22:24:04 | 000,000,149 | ---- | M] () -- \Program Files\F1 2014\system\osd_loader.xml
[2010/08/11 17:11:12 | 000,897,024 | ---- | M] () -- \Program Files\Free FLV Converter\TubeDownloader.ocx
[2010/02/07 21:40:00 | 000,000,543 | ---- | M] () -- \Program Files\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009/12/15 17:58:18 | 000,017,056 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009/12/15 17:58:20 | 000,018,592 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009/12/15 17:58:24 | 000,026,272 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009/12/15 17:58:26 | 000,012,960 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009/12/15 17:58:28 | 000,017,568 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009/12/15 17:58:56 | 000,019,616 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009/12/15 17:59:04 | 000,015,008 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009/12/15 17:59:06 | 000,019,104 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009/12/15 17:59:10 | 000,017,056 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009/12/15 17:59:14 | 000,012,448 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009/12/15 17:59:16 | 000,016,544 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009/12/15 17:59:20 | 000,016,544 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009/12/15 17:59:22 | 000,011,936 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009/12/15 17:59:24 | 000,013,984 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009/12/15 17:59:28 | 000,028,320 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009/05/01 19:42:00 | 000,009,880 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2015/10/20 18:33:54 | 000,064,280 | ---- | M] () -- \Program Files\Life Is Strange Episode 5\Binaries\Win32\PhysXLoader.dll
[2015/10/20 18:33:54 | 000,503,808 | ---- | M] () -- \Program Files\Life Is Strange Episode 5\Binaries\Win32\PhysXLoaderDEBUG.dll
[2010/08/27 18:43:08 | 000,071,008 | ---- | M] () -- \Program Files\Mafia II\pc\PhysXLoader.dll
[2013/01/01 00:00:00 | 000,064,832 | ---- | M] () -- \Program Files\Metro Last Light\PhysXLoader.dll
[2009/09/25 19:19:18 | 000,470,528 | ---- | M] () -- \Program Files\NHL 09\LeagueLoader.exe
[2013/11/04 17:03:04 | 000,000,755 | ---- | M] () -- \Program Files\NHL 09\LeagueLoader.ini
[2009/09/25 19:32:14 | 000,004,782 | ---- | M] () -- \Program Files\NHL 09\LeagueLoader_Readme_rus.txt
[2009/09/25 19:33:46 | 000,000,686 | ---- | M] () -- \Program Files\NHL 09\NHL09LeagueLoader.eng
[2009/09/25 19:32:38 | 000,000,811 | ---- | M] () -- \Program Files\NHL 09\NHL09LeagueLoader.rus
[1 \Program Files\NHL 09\*.tmp files -> \Program Files\NHL 09\*.tmp -> ]
[2013/11/14 12:57:27 | 001,168,672 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{7721F26D-714B-4EAD-89E6-7BB7DB49157F}\ExtensionLoader.dll
[2013/11/14 12:57:27 | 001,168,672 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2014/06/10 16:42:34 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2014/06/10 16:42:30 | 000,070,464 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2014/02/28 02:58:38 | 000,007,825 | ---- | M] () -- \Program Files\Steam\remoteui\static\libs\images\ajax-loader.gif
[2015/01/31 10:56:58 | 005,156,864 | ---- | M] () -- \Program Files\Youtube Downloader\youtube-downloader.exe
[2014/11/25 20:06:11 | 000,001,103 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader\Youtube Downloader.lnk
[2014/12/17 19:34:41 | 000,123,738 | ---- | M] () -- \ProgramData\Real\RealPlayer\DL2Install-log_0_RealDownloader2.msi.txt
[2014/12/17 19:34:43 | 000,092,424 | ---- | M] () -- \ProgramData\Real\RealPlayer\DL2Install-log_1_VideoDownloader.msi.txt
[2012/02/02 11:09:12 | 000,007,715 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2012/02/02 11:09:12 | 000,000,319 | ---- | M] () -- \ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2014/11/25 20:06:11 | 000,001,103 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Youtube Downloader\Youtube Downloader.lnk
[2014/12/17 19:34:41 | 000,123,738 | ---- | M] () -- \Users\All Users\Real\RealPlayer\DL2Install-log_0_RealDownloader2.msi.txt
[2014/12/17 19:34:43 | 000,092,424 | ---- | M] () -- \Users\All Users\Real\RealPlayer\DL2Install-log_1_VideoDownloader.msi.txt
[2012/02/02 11:09:12 | 000,007,715 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2012/02/02 11:09:12 | 000,000,319 | ---- | M] () -- \Users\All Users\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2012/08/28 13:52:59 | 000,076,503 | ---- | M] () -- \Users\ToM\AppData\Local\SRDownloader.err
[2012/04/18 14:01:55 | 000,000,040 | ---- | M] () -- \Users\ToM\AppData\Local\SRDownloader.log
[2012/09/23 11:20:57 | 000,001,368 | ---- | M] () -- \Users\ToM\AppData\Local\SRDownloader.nast
[2015/09/23 08:30:52 | 000,009,418 | ---- | M] () -- \Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\img\gifloader.gif
[2014/12/22 14:07:48 | 000,000,786 | ---- | M] () -- \Users\ToM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone užívateľa ToM\DiagnosticLogs\LanguageAssetLoader\LanguageAssetLoader_2014_09_28_16_25_450200.log
[2014/12/22 14:07:48 | 000,000,737 | ---- | M] () -- \Users\ToM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone užívateľa ToM\DiagnosticLogs\LanguageAssetLoader\LanguageAssetLoader_2014_12_22_14_07_330100.log
[2014/12/22 14:29:06 | 000,000,243 | ---- | M] () -- \Users\ToM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone užívateľa ToM\DiagnosticLogs\LanguageAssetLoader\LanguageAssetLoader_2014_12_22_14_08_020100.log
[2015/01/29 10:33:02 | 000,001,834 | ---- | M] () -- \Users\ToM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone užívateľa ToM\DiagnosticLogs\LanguageAssetLoader\LanguageAssetLoader_2015_01_04_22_14_000100.log
[2014/11/25 20:06:11 | 000,001,085 | ---- | M] () -- \Users\ToM\Desktop\Programy\Youtube Downloader.lnk
[2011/06/16 12:03:00 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2015/11/05 17:31:14 | 000,013,800 | ---- | M] () -- \Windows\Prefetch\LEAGUELOADER.EXE-241F9A57.pf
[2015/11/04 10:18:49 | 000,047,332 | ---- | M] () -- \Windows\Prefetch\YOUTUBE-DOWNLOADER.EXE-A57C3D6F.pf
[2011/07/16 05:19:58 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a6a5bc28bae3edb288d586ebce7d1f5\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a6a5bc28bae3edb288d586ebce7d1f5\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:15:45 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a6a5bc28bae3edb288d586ebce7d1f5\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\4a6a5bc28bae3edb288d586ebce7d1f5\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2014/12/18 09:29:51 | 000,003,204 | ---- | M] () -- \Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3048799603-1129691480-120217510-1000
[2014/12/18 09:29:51 | 000,003,342 | ---- | M] () -- \Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3048799603-1129691480-120217510-1000
[2009/07/14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009/07/14 05:56:40 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009/07/14 05:56:40 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2009/07/14 05:56:40 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2011/06/16 11:51:53 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011/06/16 11:51:53 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011/06/16 11:51:53 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009/07/14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009/07/14 03:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009/07/14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2010/11/20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009/07/14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 160 bytes -> C:\Users\ToM\Documents\1.jpeg:3or4kl4x13tuuug3Byamue2s4b
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:FFE0B1EF

< End of report >

Re: Prosím o kontrolu logu

Napsal: 11 lis 2015 09:54
od ma.jo
OTL Extras logfile created on: 11. 11. 2015 9:16:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ToM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,49 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 52,65% Memory free
6,98 Gb Paging File | 5,07 Gb Available in Paging File | 72,69% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 150,94 Gb Free Space | 32,41% Space Free | Partition Type: NTFS

Computer Name: TOM-PC | User Name: ToM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AntiVirusDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallDisableNotify" = 0
"FirewallOverride" = 1
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{3E7AADF2-ABFF-440A-898A-2B8BFBFDAD67}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{66F6D3FF-B130-4006-AFF1-26246D64C362}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{6A9F1F4A-9914-437C-9DD1-8AE9B63B9746}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{9869A078-CBB8-4E6D-9B4D-CF9BEC949929}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{9C85F39C-9382-435F-BD97-06C77AD8351E}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{A341A7A9-5E6B-495E-8B7E-D2F1CFADF614}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B6882EE8-4FC3-4AF8-A1B1-168003F25486}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{F8D89CBF-56D6-4F08-A20E-08F2EA8966A4}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{079BF142-D381-4FB9-877A-1FFB02C3AE95}" = protocol=17 | dir=in | app=c:\program files\dayz\dayz.exe |
"{0C0DD6F8-DEA2-49DD-A15B-860941B07BC0}" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminator.exe |
"{0F9145A5-BBB5-4336-A627-7EBF9AAFF788}" = protocol=6 | dir=in | app=c:\program files\secondlifeviewer2\secondlife.exe |
"{1BA542CE-EABC-4669-8CA7-0C6B936D35D9}" = protocol=6 | dir=in | app=c:\program files\battlefield 3™\bf3.exe |
"{228D7A8C-F735-471C-AF2C-8ECBB3BFC963}" = protocol=6 | dir=in | app=c:\program files\thehunter\game\thehunter.exe |
"{296F36D6-EC66-4D8E-9CA7-8ACC93BEC422}" = protocol=17 | dir=in | app=c:\program files\thehunter\launcher\launcher.exe |
"{2D86EC2B-DD5B-4BDB-8CDC-65D3F1EFFB2C}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2EAD297A-3812-4246-AF87-A374E276A38A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{3EAEB44A-AA0C-48C8-A3A9-8640D47325B3}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{40DD2A40-B3B7-492C-90BD-231EB896E4E7}" = protocol=17 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe |
"{41701388-BD82-4EF8-8F91-993F36123710}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4211FA65-8AF2-4FE5-8542-3A08A2A569DA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{45991CDC-1D31-418C-905B-CF7CC9B1FB80}" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"{49557E18-0451-4D93-8AEA-6C07E5B21305}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{4EB16DD0-2DE7-4744-A9F9-3BFEA05B8D27}" = dir=in | app=c:\program files\protected search\protectedsearch.exe |
"{4F9D03BD-DA67-4190-9644-C611F3AFB958}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{53430F1C-18A7-40D6-9D39-13A83A828375}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{57577925-D16E-4E2A-B4F9-F814DD43CAEF}" = protocol=17 | dir=in | app=c:\program files\tunngle\tunngle.exe |
"{5B7418D1-F8D1-408F-A60D-961A9535E7D6}" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"{5F2CBE24-B7E9-41A2-825B-3CCCD0B82901}" = protocol=17 | dir=in | app=c:\program files\tunngle\tnglctrl.exe |
"{61EF4E4B-1DB9-4BC1-B927-37D8864B47B3}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{65ABC35C-A094-4186-ADF8-FC3DA1C26F9D}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{66F00F61-C056-46B3-94D8-71D2C4203CCD}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{67A22D69-D841-4175-8ADC-F06B2AD33003}" = protocol=17 | dir=in | app=c:\program files\secondlifeviewer2\secondlife.exe |
"{69E6BBB3-D44C-4510-BC90-59139F78EBB1}" = protocol=6 | dir=in | app=c:\program files\dayz\dayz.exe |
"{6A9B08C2-00F6-4F73-88B6-35C7D2124318}" = protocol=6 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{6B058201-6D52-4D6C-8C02-35102AED7F38}" = dir=out | app=c:\program files\protected search\protectedsearch.exe |
"{6FC2B6D0-B947-48C6-BB83-B526C9D59753}" = protocol=6 | dir=in | app=c:\program files\sweetim\communicator\sweetpacksupdatemanager.exe |
"{79EA7CE6-42E6-459D-B928-9DF201DA98B8}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe |
"{7E11FBD8-C215-474C-9B10-15DFBEC9D0B9}" = protocol=6 | dir=in | app=c:\program files\steam\bin\steamwebhelper.exe |
"{7FD9A753-163F-4597-9E15-C71AA3D22DCF}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{803536E0-1E54-491D-9A2B-8E323BF4725B}" = protocol=17 | dir=in | app=c:\program files\es skyrim\the elder scrolls v skyrim\skyrimlauncher.exe |
"{83368695-AACC-43B0-B63B-E285153F1FC6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{839DC54E-5D32-4423-B577-92CD6482FF66}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{8626DF69-E6A9-4637-B9BA-972C5F4CEE2F}" = protocol=6 | dir=in | app=c:\program files\tunngle\tnglctrl.exe |
"{93AA6B4C-56F9-419A-97BF-C5136A30836D}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{9420393E-C4F7-4DC2-96F3-17FAE4DCF7ED}" = protocol=17 | dir=in | app=c:\program files\battlefield 3™\bf3.exe |
"{95204C3C-72AA-4898-B03F-849F86C709BD}" = protocol=6 | dir=in | app=c:\program files\tunngle\tunngle.exe |
"{9F23C579-7EAC-4969-B36E-8A1CBA965C9E}" = protocol=17 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{A1C4DCF7-1DF5-4958-ABFE-0E4B514BC49C}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{A20F5611-6D3E-4AC9-B165-4751CEBB2BD2}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{A65A9BBD-263C-44B6-AF48-2511630E5219}" = protocol=17 | dir=in | app=c:\program files\thehunter\game\thehunter.exe |
"{A7EEDF35-C4A9-44E3-B0C5-968E96F8BC44}" = protocol=6 | dir=in | app=c:\program files\thehunter\launcher\launcher.exe |
"{B15341F6-6D7A-41F3-A2DE-EDF67863E230}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{B1F924E8-E667-4C98-853D-F83C84EAE47E}" = protocol=17 | dir=in | app=c:\program files\steam\bin\steamwebhelper.exe |
"{B3343D05-2A51-467C-8553-221648BBE3EB}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{B3A0439C-A260-483D-AD39-FDEC533FF4D0}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\team fortress 2\hl2.exe |
"{B4E030E9-5AAD-4B81-8A37-1134A8F88893}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{B76AA6BF-285C-4E27-A9DF-C204E31CB0F6}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe |
"{C6254A81-BE67-4443-B2B1-BFAD3C009E2A}" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{C9DE8A5E-10C2-4FB3-A32F-1E15E9711D9C}" = protocol=6 | dir=in | app=c:\program files\es skyrim\the elder scrolls v skyrim\skyrimlauncher.exe |
"{CB98D8D1-0360-430C-B48C-AC5607548A7C}" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"{D0C1F3AF-B00A-4333-B175-7BB0E869B3AC}" = protocol=6 | dir=in | app=c:\program files\sega\virtua tennis 4\vt4.exe |
"{D3B4E932-5737-4C1F-889A-1CA5CE0DCB0B}" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminator.exe |
"{D3F81BBD-6C5D-46B8-A1AE-A3DECBE693B7}" = protocol=17 | dir=in | app=c:\program files\sega\virtua tennis 4\vt4.exe |
"{DAF65315-6E54-4394-9C73-B7A58B5F5357}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{E429F4DB-CBAC-4901-A709-3803C4CFB755}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\team fortress 2\hl2.exe |
"{E52DD434-F87A-4796-9D6E-00D86562ED7F}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{EBC606AB-9C1C-46F1-816C-885D06A4DA13}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{FF623BAF-4228-4EF1-9279-35EE4C96BC50}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"TCP Query User{0638BB8D-F1A0-46C2-A8EE-1AA1C2CE59F3}C:\program files\dayz\dayz.exe" = protocol=6 | dir=in | app=c:\program files\dayz\dayz.exe |
"TCP Query User{11047628-AB0B-40FE-B1B4-383158BF1BCA}C:\program files\black_box\dirt 3\dirt3_game.exe" = protocol=6 | dir=in | app=c:\program files\black_box\dirt 3\dirt3_game.exe |
"TCP Query User{14E07F66-1A37-4517-8618-8B762273474B}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{174E9D13-FADF-49D2-9100-9010C2B69E51}C:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"TCP Query User{178196F0-3B81-464B-AE5E-92DCFB3A8EC1}C:\program files\bitlord 2\bitlord files\bitlord.exe" = protocol=6 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"TCP Query User{253AAF0A-D96C-467B-9EEA-81F3AF1074D9}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{25BF5FF9-53AA-416B-8C30-067F7160E14F}C:\program files\bethesda softworks\dishonored\binaries\win32\dishonored.exe" = protocol=6 | dir=in | app=c:\program files\bethesda softworks\dishonored\binaries\win32\dishonored.exe |
"TCP Query User{2FAC13C3-87B1-4E78-A271-58458AC48508}C:\program files\ubisoft\farcry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\farcry 3\bin\farcry3.exe |
"TCP Query User{3B10D16F-D154-4F09-A338-203EFFCD17E7}C:\program files\payday 2\payday2_win32_release.exe" = protocol=6 | dir=in | app=c:\program files\payday 2\payday2_win32_release.exe |
"TCP Query User{457A3088-B0A5-45A6-8E02-54A835E341AE}C:\program files\origin games\fifa world\fifaworld.exe" = protocol=6 | dir=in | app=c:\program files\origin games\fifa world\fifaworld.exe |
"TCP Query User{487647D1-AB8F-466F-B5EE-FB05EDAD802E}C:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"TCP Query User{507DB47D-A83A-49E6-A860-0CD345EE66FB}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"TCP Query User{586C1A73-E976-485A-B877-EF5EB5031B24}C:\program files\dayz\dayz_v44.exe" = protocol=6 | dir=in | app=c:\program files\dayz\dayz_v44.exe |
"TCP Query User{5C8A8F4B-79EC-4ED2-98DC-11EA4B9C28D5}C:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{6F2D6CBC-E2B2-4D95-8407-C5FE4534B354}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{75F99C3C-6E5A-487A-98B8-4E82D162A7B9}C:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=6 | dir=in | app=c:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe |
"TCP Query User{7EFAC3E0-E6C7-414D-97AC-F67A1F06339E}C:\program files\electronic arts\fifa 14\fifa 14\game\fifa14.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\fifa 14\fifa 14\game\fifa14.exe |
"TCP Query User{7FBD11B2-6AAD-4A09-9CC4-1C91630822B4}C:\program files\naissancee\binaries\win32\udk.exe" = protocol=6 | dir=in | app=c:\program files\naissancee\binaries\win32\udk.exe |
"TCP Query User{806E18D6-6A42-42A2-9674-5E34C4288AD3}C:\program files\wrc 4 fia world rally championship\wrc4.exe" = protocol=6 | dir=in | app=c:\program files\wrc 4 fia world rally championship\wrc4.exe |
"TCP Query User{82039C33-8ED4-485D-8DA4-003C59A1E53C}C:\program files\euro truck simulator 2\online_updater.updated" = protocol=6 | dir=in | app=c:\program files\euro truck simulator 2\online_updater.updated |
"TCP Query User{913B64BB-CD98-4DFF-89E7-C2B63054DFF8}C:\program files\fifa 12\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\fifa 12\game\fifa.exe |
"TCP Query User{AB0F34DC-EAB7-4C4E-9E96-3EBE3D1D1982}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"TCP Query User{C56D7F01-9B78-4303-8E09-039FC8790820}C:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=6 | dir=in | app=c:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe |
"TCP Query User{C7DCB0F7-A2C7-4650-BF42-6E7444D179EA}C:\program files\secondlifeviewer2\slvoice.exe" = protocol=6 | dir=in | app=c:\program files\secondlifeviewer2\slvoice.exe |
"TCP Query User{D115A8C8-F35A-4152-B565-C6E1E9A9520E}C:\program files\secondlifeviewer2\slvoice.exe" = protocol=6 | dir=in | app=c:\program files\secondlifeviewer2\slvoice.exe |
"TCP Query User{D49082C6-CD31-4B22-93BA-F19104090CB2}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"TCP Query User{DDDD245F-BBD2-44B9-B94A-D51140BD674E}C:\program files\secondlifeviewer\slvoice.exe" = protocol=6 | dir=in | app=c:\program files\secondlifeviewer\slvoice.exe |
"TCP Query User{E068031F-4393-469E-A6EC-F4206EA012DD}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{E66B5C8C-7E8A-48A9-8780-86790A0DD767}C:\program files\electronic arts\fifa 13\game\fifa13.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\fifa 13\game\fifa13.exe |
"TCP Query User{EC018DA3-D591-4A2E-A489-424519F361DC}C:\program files\secondlifeviewer\slvoice.exe" = protocol=6 | dir=in | app=c:\program files\secondlifeviewer\slvoice.exe |
"TCP Query User{F2FCCF8F-682C-40C5-95F4-B3D55494D5D5}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{F50F7A5D-BEFB-419E-AF94-D76A33A359F4}C:\program files\electronic arts\fifa11\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\fifa11\game\fifa.exe |
"UDP Query User{1EEA0ACA-DACE-46BD-86DE-016C0EC6E7D2}C:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files\rockstar games\grand theft auto iv\gtaiv.exe |
"UDP Query User{1F64096D-93AB-42EC-BE0B-08277A911CF1}C:\program files\electronic arts\fifa 13\game\fifa13.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\fifa 13\game\fifa13.exe |
"UDP Query User{2B29270E-2987-4295-AAA8-914C034CB197}C:\program files\naissancee\binaries\win32\udk.exe" = protocol=17 | dir=in | app=c:\program files\naissancee\binaries\win32\udk.exe |
"UDP Query User{2E18E527-6CA4-4261-A5BF-222AFDA998FA}C:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=17 | dir=in | app=c:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe |
"UDP Query User{3583B41E-EF7E-4E83-A4E5-F21DA6AA7810}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{393B0B6F-4FA7-4766-A8B2-45CAA79B8C99}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"UDP Query User{43D7660F-F47B-40AE-A9C8-C86412DBF5F1}C:\program files\dayz\dayz.exe" = protocol=17 | dir=in | app=c:\program files\dayz\dayz.exe |
"UDP Query User{45C1FB8A-A8EC-4F37-BBD3-E74495150ACD}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"UDP Query User{49DFD890-C350-4EA6-855A-27361EED8132}C:\program files\fifa 12\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\fifa 12\game\fifa.exe |
"UDP Query User{57736A0C-01F1-438A-AC48-F3E85CCBE874}C:\program files\bitlord 2\bitlord files\bitlord.exe" = protocol=17 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"UDP Query User{5BC8EBAB-10D0-4002-AC61-8358EA31FA2A}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"UDP Query User{602ED79F-4BE9-4637-9232-DB42DA970C4D}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{60F84EA4-B132-4060-8837-EF79ABC5A95A}C:\program files\bethesda softworks\dishonored\binaries\win32\dishonored.exe" = protocol=17 | dir=in | app=c:\program files\bethesda softworks\dishonored\binaries\win32\dishonored.exe |
"UDP Query User{7AE5D325-0C9E-4CF9-8DFD-24DB1CB31775}C:\program files\payday 2\payday2_win32_release.exe" = protocol=17 | dir=in | app=c:\program files\payday 2\payday2_win32_release.exe |
"UDP Query User{9FCD013A-D085-4C5F-A247-17F4A644EEC3}C:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=17 | dir=in | app=c:\users\tom\appdata\roaming\gameranger\gameranger\gameranger.exe |
"UDP Query User{AD3B03F6-F76A-4949-8F88-C051BEA9EEE1}C:\program files\electronic arts\fifa 14\fifa 14\game\fifa14.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\fifa 14\fifa 14\game\fifa14.exe |
"UDP Query User{AF704634-0298-4A80-8894-4561540508BF}C:\program files\wrc 4 fia world rally championship\wrc4.exe" = protocol=17 | dir=in | app=c:\program files\wrc 4 fia world rally championship\wrc4.exe |
"UDP Query User{B08B6B0B-EF29-427B-BCBB-04FDFCB68A5E}C:\program files\dayz\dayz_v44.exe" = protocol=17 | dir=in | app=c:\program files\dayz\dayz_v44.exe |
"UDP Query User{B4ECFB2B-4590-498C-B4AB-A0742D7C7E5C}C:\program files\ubisoft\farcry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\farcry 3\bin\farcry3.exe |
"UDP Query User{B7CC19BA-DC10-495E-9FBB-A10A8B9A8566}C:\program files\black_box\dirt 3\dirt3_game.exe" = protocol=17 | dir=in | app=c:\program files\black_box\dirt 3\dirt3_game.exe |
"UDP Query User{C1CED88C-3E51-44D1-B5A8-393345FDDF74}C:\program files\secondlifeviewer\slvoice.exe" = protocol=17 | dir=in | app=c:\program files\secondlifeviewer\slvoice.exe |
"UDP Query User{C74866A0-D343-4624-AAF8-0A023803B81C}C:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"UDP Query User{C76360BE-B707-4FBB-B79E-60DF2D304175}C:\program files\origin games\fifa world\fifaworld.exe" = protocol=17 | dir=in | app=c:\program files\origin games\fifa world\fifaworld.exe |
"UDP Query User{CA6DF644-E1DD-4ED1-BEA4-C85B92477C20}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{CBD22806-AD08-49B2-A6F9-68F7B5DDE7A6}C:\program files\electronic arts\fifa11\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\fifa11\game\fifa.exe |
"UDP Query User{D3785BE8-8EC9-48F7-8D21-91C0A34B9E50}C:\program files\euro truck simulator 2\online_updater.updated" = protocol=17 | dir=in | app=c:\program files\euro truck simulator 2\online_updater.updated |
"UDP Query User{DF398638-AC77-4A15-BF8E-934FB6044D49}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{E1A58AFE-04FC-4E4A-B7DE-285744E13963}C:\program files\secondlifeviewer\slvoice.exe" = protocol=17 | dir=in | app=c:\program files\secondlifeviewer\slvoice.exe |
"UDP Query User{EA493DD9-4116-49E5-A33A-D9D527BB6A02}C:\program files\secondlifeviewer2\slvoice.exe" = protocol=17 | dir=in | app=c:\program files\secondlifeviewer2\slvoice.exe |
"UDP Query User{EF260CE3-2B9A-4A15-A713-48CFE2B57913}C:\program files\secondlifeviewer2\slvoice.exe" = protocol=17 | dir=in | app=c:\program files\secondlifeviewer2\slvoice.exe |
"UDP Query User{F1B900FA-0DCE-4EB0-8813-C3CC6BEBB5A3}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{F706F4AC-0C91-466D-A4BA-F177CEA18DA9}C:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04B83666-3A62-452B-85D3-70F8117F2329}_is1" = CamStudio 2.7.2
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2E9DCB-9938-475E-B4DD-8851738852FF}" = AIO_Scan
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}" = Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}" = WebReg
"{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1" = Euro Truck Simulator 2
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{28D1723C-31C4-4A83-9799-DFFB3739026D}" = Warface Launcher (Beta)
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV
"{56736259-613E-4A3B-B428-6235F2E76F44}_is1" = Spyware Terminator 2012
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{5FD7B6B3-08C7-4FEE-9C37-A2134C699885}}_is1" = This War of Mine
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{78002155-F025-4070-85B3-7C0453561701}" = Apple Application Support
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}" = Fax
"{817750FA-EC6A-485D-9901-0683AE6FFDF1}" = Google Earth
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{859B9BCA-5376-4566-9F88-C6C9DAA7A925}" = Microsoft Security Client SK-SK Language Pack
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)soft Office Word MUI (Slovak) 2007

"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISE_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISE_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISE_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91C0B95B-B83A-4828-A775-BBE2DD421051}" = Nero 7 Ultra Edition
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}" = Paint.NET v3.5.8
"{9DF5E81T-0C6U-4FZ7-ABG5-3E5KE3F1BG2Z}_is1" = Assassins Creed IV - Black Flag 1.01
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AC76BA86-0804-1033-1959-001824144531}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1051-7B44-AA1000000001}" = Adobe Reader X (10.1.8) - Slovak
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 344.75
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 344.75
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 344.75
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.7.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision radič ovládača 344.75
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 9.14.0702
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 9.3.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovládač zvuku HD 1.3.32.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 9.3.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.9
"{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX
"{B7666229-351B-47D9-AA6F-DF777CF04BBF}" = Caesar IV
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}" = BufferChm
"{C0CC75CD-F5B7-46AD-B016-17C0F5171718}" = Apple Mobile Device Support
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C716522C-3731-4667-8579-40B098294500}" = Toolbox
"{C916D86C-AB76-49c7-B0E4-A946E0FD9BC2}" = HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E06EC832-F6E9-49D6-8468-964CA5F9DB89}" = Microsoft Antimalware Service SK-SK Language Pack
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}" = UnloadSupport
"{E09575B2-498D-4C8B-A9D2-623F78574F29}" = AIO_CDB_Software
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E7112940-5F8E-4918-B9FE-251F2F8DC81F}" = AIO_CDB_ProductContext
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{EB21A812-671B-4D08-B974-2A347F0D8F70}" = HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}" = HPSSupply
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F32DC846-4457-40A8-BECA-BCC0E960BC53}" = iTunes
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Audacity_is1" = Audacity 2.0.5
"BitLord" = BitLord 2.3
"CCleaner" = CCleaner
"Cities XL 2012" = Cities XL 2012
"CloneCD" = CloneCD
"DAEMON Tools Lite" = DAEMON Tools Lite
"DVD Flick_is1" = DVD Flick 1.3.0.7
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Euro Truck Simulator 2 - Scandinavia_is1" = Euro Truck Simulator 2 - Scandinavia
"Free AVI Video Converter_is1" = Free AVI Video Converter version 5.0.16.821
"Free FLV Converter_is1" = Free FLV Converter V 6.98.0
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"Google Chrome" = Google Chrome
"HD Tune_is1" = HD Tune 2.55
"Image Grabber II" = Image Grabber II
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"Life Is Strange Episode 5_is1" = Life Is Strange Episode 5
"Mafia II DLC Jimmy's Vendetta_is1" = Mafia II DLC Jimmy's Vendetta
"Mafia II_is1" = Mafia II DLC Joe's Adventures
"Metro Last Light_is1" = Metro Last Light
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 4.0 (x86 cs)" = Mozilla Firefox 4.0 (x86 cs)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Opera 11.64.1403" = Opera 11.64
"Opera 31.0.1889.174" = Opera Stable 31.0.1889.174
"Origin" = Origin
"oZone3D.Net FurMark_is1" = oZone3D.Net FurMark v1.7.0
"RjEyMDE0_is1" = F1 2014
"SecondLifeViewer" = SecondLifeViewer (remove only)
"SHOUTcast" = SHOUTcast DSP Plug-in v2
"Steam App 440" = Team Fortress 2
"Tunngle beta_is1" = Tunngle beta
"UDK-c51f207c-fad5-43ca-837d-5b9764d18ad9" = My Game Long Name
"V1JDNEZJQVdvcmxkUmFsbHlDaGFtcGlvbnNoaXA=_is1" = WRC 4 FIA World Rally Championship
"VLC media player" = VLC media player
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR 4.01 (32-bit)
"Youtube Downloader_is1" = Youtube Downloader 4.72

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3048799603-1129691480-120217510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GameRanger" = GameRanger
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 6. 11. 2015 6:29:17 | Computer Name = ToM-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 8018

Error - 6. 11. 2015 6:29:18 | Computer Name = ToM-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 6. 11. 2015 6:29:18 | Computer Name = ToM-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 9017

Error - 6. 11. 2015 6:29:18 | Computer Name = ToM-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 9017

Error - 7. 11. 2015 3:17:40 | Computer Name = ToM-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: st_rsser.exe, verzia: 3.0.0.101, časová
značka: 0x54b4ced7 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0x00000000 Odstup chyby: 0x00000000 Identifikácia chybného
procesu: 0x97c Čas spustenia chybnej aplikácie: 0x01d1192a90286d7d Cesta chybnej
aplikácie: C:\Program Files\Spyware Terminator\st_rsser.exe Cesta chybného modulu:
unknown Identifikácia hlásenia: a0cd1cd1-851f-11e5-b257-1c6f65d90db5

Error - 8. 11. 2015 14:22:23 | Computer Name = ToM-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 8. 11. 2015 14:22:23 | Computer Name = ToM-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 8. 11. 2015 14:22:23 | Computer Name = ToM-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 9. 11. 2015 4:05:36 | Computer Name = ToM-PC | Source = Microsoft-Windows-CAPI2 | ID = 512
Description = Službe Cryptographic Services sa nepodarilo inicializovať objekt System
Writer zálohy VSS. Details: Could not query the status of the EventSystem service.

System
Error: A system shutdown is in progress. .

Error - 10. 11. 2015 10:18:39 | Computer Name = ToM-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: st_rsser.exe, verzia: 3.0.0.101, časová
značka: 0x54b4ced7 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x50005c00 Identifikácia chybného
procesu: 0x9ec Čas spustenia chybnej aplikácie: 0x01d11bc2a1a019a6 Cesta chybnej
aplikácie: C:\Program Files\Spyware Terminator\st_rsser.exe Cesta chybného modulu:
unknown Identifikácia hlásenia: efae584d-87b5-11e5-877d-1c6f65d90db5

[ System Events ]
Error - 11. 11. 2015 3:19:47 | Computer Name = ToM-PC | Source = DCOM | ID = 10005
Description =

Error - 11. 11. 2015 3:19:47 | Computer Name = ToM-PC | Source = DCOM | ID = 10005
Description =

Error - 11. 11. 2015 3:19:52 | Computer Name = ToM-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Function Discovery Provider Host, od ktorej závisí
služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 11. 11. 2015 3:19:53 | Computer Name = ToM-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 11. 11. 2015 3:19:53 | Computer Name = ToM-PC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Server, od ktorej závisí služba Computer Browser,
zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 11. 11. 2015 3:20:14 | Computer Name = ToM-PC | Source = DCOM | ID = 10005
Description =

Error - 11. 11. 2015 3:25:03 | Computer Name = TOM-PC | Source = Microsoft Antimalware | ID = 2004
Description = Pri pokuse programu %%860 o načítanie podpisov sa vyskytla chyba.
Program sa pokúsi obnoviť známu množinu podpisov. Počet pokusov o podpis: %%824 Kód
chyby: 0x80070002 Popis chyby: The system cannot find the file specified. Verzia
podpisu: 0.0.0.0;0.0.0.0 Verzia nástroja: 0.0.0.0

Error - 11. 11. 2015 3:25:04 | Computer Name = ToM-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby WindowsMangerProtect Service zlyhalo kvôli nasledujúcej
chybe: %%2

Error - 11. 11. 2015 3:25:15 | Computer Name = TOM-PC | Source = Microsoft Antimalware | ID = 2004
Description = Pri pokuse programu %%860 o načítanie podpisov sa vyskytla chyba.
Program sa pokúsi obnoviť známu množinu podpisov. Počet pokusov o podpis: %%825 Kód
chyby: 0x80070714 Popis chyby: The specified image file did not contain a resource
section. Verzia podpisu: 0.0.0.0;0.0.0.0 Verzia nástroja: 0.0.0.0

Error - 11. 11. 2015 3:25:21 | Computer Name = ToM-PC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Windows optimizer zlyhalo kvôli nasledujúcej chybe:
%%2


< End of report >

Re: Prosím o kontrolu logu

Napsal: 11 lis 2015 17:39
od Rudy
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:

:OTL
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-3048799603-1129691480-120217510-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
[2011/06/16 12:19:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Extensions
[2015/02/07 10:25:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions
[2011/06/16 12:19:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Extensions
[2015/02/07 10:25:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions
[2011/07/03 13:52:52 | 000,023,073 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\imgflashblocker@shimon.chohen.xpi
[2012/06/04 17:33:54 | 000,030,312 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi
[2012/05/05 10:40:58 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/07/24 19:59:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
O2 - BHO: (no name) - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
@Alternate Data Stream - 160 bytes -> C:\Users\ToM\Documents\1.jpeg:3or4kl4x13tuuug3Byamue2s4b
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:FFE0B1EF

:file
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Re: Prosím o kontrolu logu

Napsal: 11 lis 2015 20:41
od ma.jo
All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-3048799603-1129691480-120217510-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Extensions folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}\defaults\preferences folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}\defaults folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}\chrome folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\skin folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\locale\zh-CN folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\locale\en-US folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\locale folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\content\js\pack folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\content\js\lib folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\content\js folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome\content folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com\chrome folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\detgdp@gmail.com folder moved successfully.
C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions folder moved successfully.
Folder C:\Users\ToM\AppData\Roaming\mozilla\Extensions\ not found.
Folder C:\Users\ToM\AppData\Roaming\mozilla\Firefox\Profiles\ok13uiwk.default\extensions\ not found.
File C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\imgflashblocker@shimon.chohen.xpi not found.
File C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi not found.
File C:\Users\ToM\AppData\Roaming\mozilla\firefox\profiles\ok13uiwk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi not found.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\no folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ms folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\he folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\et folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es_419 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_US folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\en_GB folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\no folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ms folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\he folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\eu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\et folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es_419 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_US folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_GB folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\no folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\he folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\en folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\he folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\et folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\es_419 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\en_US folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\en_GB folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\en folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\zu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\zh_HK folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ur folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\te folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ta folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\sw folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\si folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\no folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ne folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ms folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\mr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\mn folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ml folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\lo folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\kn folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\km folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ka folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\iw folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\is folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\hy folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\gu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\gl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\fr_CA folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\fa folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\eu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\et folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\es_419 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\en_US folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\en_GB folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\bn folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\az folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\am folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales\af folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\te folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\nb folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\he folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\gu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\en folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\uiscripts\blacklisting folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\uiscripts folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\pages folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\options folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\jquery\css\images folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\jquery\css folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\jquery folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\img\search folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\img folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\filtering folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\button folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\nb folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\et folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\es_419 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\en_GB folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\en folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\images folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\html folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\css folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0 folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_metadata folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_TW folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\zh_CN folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\vi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\uk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\tr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\th folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\sk folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\se folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ru folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ro folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_PT folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pt_BR folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\pl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\no folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\nl folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lv folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\lt folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ko folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ja folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\it folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\id folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hu folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\hi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fr folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fil folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\fi folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\es folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\en folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\el folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\de folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\da folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\cs folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ca folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\bg folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales\ar folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\_locales folder moved successfully.
C:\Users\ToM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8984B388-A5BB-4DF7-B274-77B879E179DB}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
ADS C:\Users\ToM\Documents\1.jpeg:3or4kl4x13tuuug3Byamue2s4b deleted successfully.
ADS C:\ProgramData\TEMP:FFE0B1EF deleted successfully.
Error: Unable to interpret <:file> in the current context!
Error: Unable to interpret <C:\Windows\tasks\GoogleUpdateTaskMachineCore.job> in the current context!
Error: Unable to interpret <%windir%\system32\*.tmp.dll /s> in the current context!
Error: Unable to interpret <%windir%\system32\SET*.tmp /s> in the current context!
Error: Unable to interpret <%windir%\*.tmp> in the current context!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: ToM
->Temp folder emptied: 2045236 bytes
->Temporary Internet Files folder emptied: 9374133 bytes
->Java cache emptied: 5477819 bytes
->FireFox cache emptied: 99407306 bytes
->Google Chrome cache emptied: 6979555 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 2529 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1500434 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8633880 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 127,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: ToM
->Flash cache emptied: 0 bytes

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 11112015_203554

Files\Folders moved on Reboot...
File move failed. C:\Users\ToM\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\f57daaeacea86e044c4440b22d0b6fb_fce8395c8fd8a86c_6229ccd76215aea1_0_0.bin scheduled to be moved on reboot.
File move failed. C:\Users\ToM\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\f57daaeacea86e044c4440b22d0b6fb_fce8395c8fd8a86c_6229ccd76215aea1_0_0.toc scheduled to be moved on reboot.
File move failed. C:\Windows\SBC654F46.tmp scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: Prosím o kontrolu logu

Napsal: 11 lis 2015 21:39
od Rudy
Smazáno. Nastala nějaká změna?

Re: Prosím o kontrolu logu

Napsal: 17 lis 2015 20:22
od ma.jo
vyzerá to byť v poriadku, vďaka moc :-)

Re: Prosím o kontrolu logu

Napsal: 17 lis 2015 21:11
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz