VIRY.CZ

Dobrý den,

rád bych poprosil o kontrolu logu. Ten stejný problém jsem řešil již minulý týden a vypadalo to, že je už vše v pořádku, ale bohužel s eproblém opakuje. Téma bylo uzamčeno tak jsem založil nové.

V jednu chvili(bez zjevne priciny) se mi najednou prestanou nacitat temer vsechny internetove stranky (pise to spojeni bylo preruseno, nefunguji v zadnem prohlizeci). Napr facebook ale bezi bez problemu. Kdyz se pocitac pote vypne, tak pak jiz zase vse bezi nejakou dobu bez problemu. Predem dekuji za rady

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pokladna2 at 2016-01-18 12:47:26
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 33 GB (12%) free of 282 GB
Total RAM: 3006 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:47:38, on 18.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
C:\windows\sysWow64\SearchProtocolHost.exe
C:\Program Files\trend micro\Pokladna2.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Nike+ Connect] "C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - (no file)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16085 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
c:\windows\system32\svchost.exe -k gpsvcgroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
c:\windows\system32\svchost.exe -k networkservice
C:\windows\System32\spoolsv.exe
taskeng.exe {AE8D30EE-3557-424F-92E5-A90C224D667C}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"taskhost.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
szndesktop.exe default start
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\windows\system32\conhost.exe "-17182521475178374611050162931740316741-736097353-702666848-684521716-606091503
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --apps-gallery-install-auto-confirm-for-tests=accept --incognito http://software.seznam.cz/listicka?browser=chrome#auto
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3932.0.1227843030\813596584" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,23,51 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2559 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/Control/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="3932.1.11920705\2133853974" --font-cache-shared-handle=1936 /prefetch:673131151
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
c:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 5352
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\System32\alg.exe
C:\windows\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe" /start IDLE_APP_EVENT_{90140011-0066-0405-0000-0000000FF1CE}
"C:\windows\sysWow64\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10011_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10011 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
-Minimized
c:\windows\system32\svchost.exe -k wersvcgroup
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Users\Pokladna2\Desktop\ost\Ost 2\Programy\RSITx64.exe"
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe" /noconfig /fullpaths @"C:\Users\Pokladna2\AppData\Local\Temp\vuc8xzqq.cmdline"
\??\C:\windows\system32\conhost.exe "1608245741-1905546187-382962408-9809984285640302331856876683-1140886969-302344489

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMioCyclo100PlugIn.dll
npMioPlugIn.dll
nppdf32.dll

C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\
webssearches.xml
yoursites123.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2000-01-01 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2000-01-01 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2000-01-01 416024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe [2015-06-09 36705800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nike+ Connect]
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Nike+ Connect"=C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

C:\Users\Pokladna2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2000-01-01 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-14 15:02:09 ----A---- C:\windows\system32\drivers\iSafeNetFilter.sys
2016-01-14 15:01:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\Elex-tech
2016-01-13 00:03:49 ----D---- C:\rsit
2016-01-12 09:29:49 ----D---- C:\windows\system32\log
2016-01-12 09:29:32 ----D---- C:\Program Files (x86)\Elex-tech
2016-01-08 09:15:50 ----D---- C:\ProgramData\QWdMQ
2016-01-07 09:36:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-28 17:30:00 ----A---- C:\windows\system32\MetaViewer64.dll
2015-12-26 22:13:42 ----D---- C:\Program Files (x86)\Warcraft III - Gold Edition
2015-12-24 14:07:42 ----D---- C:\Users\Pokladna2\AppData\Roaming\uplay
2015-12-23 01:06:03 ----D---- C:\Program Files (x86)\Ubisoft
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\xactengine3_7.dll
2015-12-23 01:03:10 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2015-12-23 01:03:10 ----A---- C:\windows\system32\D3DCompiler_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dcsx_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\system32\D3DX9_43.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\X3DAudio1_7.dll
2015-12-23 01:03:04 ----A---- C:\windows\system32\XAudio2_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\D3DCompiler_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dcsx_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\system32\D3DX9_42.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\d3dx10_41.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\D3DCompiler_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\system32\D3DX9_41.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAPOFX1_3.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\xactengine3_4.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\D3DCompiler_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\system32\D3DX9_40.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAPOFX1_2.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\X3DAudio1_5.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAPOFX1_1.dll
2015-12-23 01:02:48 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2015-12-23 01:02:48 ----A---- C:\windows\system32\xactengine3_2.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\D3DCompiler_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\system32\D3DX9_39.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\X3DAudio1_4.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\system32\D3DX9_38.dll
2015-12-23 01:02:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2015-12-23 01:02:36 ----A---- C:\windows\system32\XAudio2_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\system32\xactengine3_0.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\D3DCompiler_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\system32\D3DX9_37.dll
2015-12-23 01:02:30 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2015-12-23 01:02:30 ----A---- C:\windows\system32\xactengine2_10.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\D3DCompiler_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\system32\d3dx9_36.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\d3dx10_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\D3DCompiler_35.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\X3DAudio1_2.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\D3DCompiler_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\d3dx9_34.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\D3DCompiler_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\system32\d3dx9_33.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_5.dll
2015-12-23 01:02:18 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2015-12-23 01:02:18 ----A---- C:\windows\system32\d3dx10.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\x3daudio1_1.dll
2015-12-23 01:02:15 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2015-12-23 01:02:15 ----A---- C:\windows\system32\d3dx9_31.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xactengine2_3.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xactengine2_2.dll
2015-12-23 01:02:12 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2015-12-23 01:02:12 ----A---- C:\windows\system32\xactengine2_1.dll
2015-12-23 01:02:04 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2015-12-23 01:02:04 ----A---- C:\windows\system32\d3dx9_30.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\x3daudio1_0.dll
2015-12-23 01:02:00 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2015-12-23 01:02:00 ----A---- C:\windows\system32\d3dx9_29.dll
2015-12-23 01:01:58 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2015-12-23 01:01:58 ----A---- C:\windows\system32\d3dx9_28.dll
2015-12-23 01:01:56 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2015-12-23 01:01:56 ----A---- C:\windows\system32\d3dx9_27.dll
2015-12-23 01:01:54 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2015-12-23 01:01:54 ----A---- C:\windows\system32\d3dx9_26.dll
2015-12-23 01:01:53 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2015-12-23 01:01:53 ----A---- C:\windows\system32\d3dx9_25.dll
2015-12-23 01:01:50 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2015-12-23 01:01:50 ----A---- C:\windows\system32\d3dx9_24.dll

======List of files/folders modified in the last 1 month======

2016-01-18 12:47:38 ----D---- C:\windows\Prefetch
2016-01-18 12:47:34 ----D---- C:\Program Files\trend micro
2016-01-18 12:47:33 ----D---- C:\windows\Temp
2016-01-18 12:45:50 ----D---- C:\windows\system32\config
2016-01-18 12:45:19 ----D---- C:\windows\system32\catroot2
2016-01-18 12:10:57 ----SHD---- C:\System Volume Information
2016-01-18 12:04:35 ----D---- C:\windows\inf
2016-01-18 09:09:40 ----D---- C:\Users\Pokladna2\AppData\Roaming\Seznam.cz
2016-01-18 09:08:12 ----A---- C:\windows\SYSWOW64\log.txt
2016-01-18 00:58:13 ----D---- C:\Users\Pokladna2\AppData\Roaming\vlc
2016-01-15 18:07:24 ----D---- C:\Windows
2016-01-15 13:07:31 ----D---- C:\Users\Pokladna2\AppData\Roaming\TeamViewer
2016-01-14 15:02:09 ----D---- C:\windows\system32\drivers
2016-01-14 14:54:59 ----HD---- C:\ProgramData
2016-01-14 14:54:44 ----D---- C:\Program Files (x86)
2016-01-14 14:45:16 ----D---- C:\AdwCleaner
2016-01-14 14:13:15 ----D---- C:\windows\SysWOW64
2016-01-14 13:43:33 ----RD---- C:\Program Files
2016-01-14 13:42:03 ----D---- C:\windows\System32
2016-01-14 13:41:54 ----D---- C:\windows\system32\Tasks
2016-01-14 13:41:50 ----D---- C:\windows\Tasks
2016-01-13 22:53:04 ----SHD---- C:\windows\Installer
2016-01-12 22:18:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\Skype
2016-01-09 18:06:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-08 20:10:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-05 19:04:02 ----D---- C:\Program Files (x86)\stepmania.com
2016-01-02 19:02:46 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-12-28 17:30:23 ----D---- C:\Program Files\HighSky Trader 5
2015-12-28 17:30:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\MetaQuotes
2015-12-26 21:49:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\DAEMON Tools Lite
2015-12-23 01:26:50 ----D---- C:\windows\SoftwareDistribution
2015-12-23 01:20:10 ----D---- C:\windows\Logs
2015-12-23 01:02:12 ----RSD---- C:\windows\assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2014-08-28 386680]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-09-09 1152632]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-09 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110922.030\IDSvia64.sys [2011-09-08 488568]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-05-14 260856]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-08-19 110112]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-08-19 52440]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-08-19 103904]
R1 iSafeNetFilter;YAC NDIS Driver; C:\windows\system32\DRIVERS\iSafeNetFilter.sys [2015-06-30 52392]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-09 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2000-01-01 12310112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 tap0901;TAP-Win32 Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2011-07-01 31232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\windows\system32\DRIVERS\iSafeKrnlBoot.sys []
S3 mvusbews;USB EWS Device; C:\windows\System32\Drivers\mvusbews.sys [2010-10-15 20480]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\ENG64.SYS [2011-09-09 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\EX64.SYS [2011-09-09 2048632]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;STM Virtual COM Port; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-08-19 118048]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-09 126520]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-02 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-02-28 347200]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-07-01 14848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]

-----------------EOF-----------------

Zdravím!
Mohl jste přes mail požádat o odemknutí a pokračovat v původním vláknu. Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.030 - Logfile created 18/01/2016 at 22:32:06
# Updated 17/01/2016 by Xplode
# Database : 2016-01-17.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Pokladna2 - POKLADNA2-HP
# Running from : C:\Users\Pokladna2\Desktop\adwcleaner_5.030.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[!] Service Not Deleted : iSafeKrnl
[!] Service Not Deleted : iSafeKrnlBoot
[!] Service Not Deleted : iSafeKrnlKit
[-] Service Deleted : iSafeKrnlMon
[!] Service Not Deleted : iSafeKrnlR3
[!] Service Not Deleted : iSafeNetFilter
[!] Service Not Deleted : iSafeService

***** [ Folders ] *****

[#] Folder Deleted : C:\Program Files (x86)\Elex-tech
[#] Folder Deleted : C:\Users\Pokladna2\AppData\Roaming\Elex-tech

***** [ Files ] *****

[-] File Deleted : C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\webssearches.xml
[-] File Deleted : C:\windows\SysNative\drivers\iSafeNetFilter.sys

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Elex-tech
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
[-] Key Deleted : HKU\.DEFAULT\Software\Elex-tech
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.yoursites123.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\yoursites123.com

***** [ Web browsers ] *****

[-] [C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://www.yoursites123.com/newtab/?type=nt&ts ... X61F8F5KNS");
[-] [C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "yoursites123");
[-] [C:\Users\Pokladna2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.yoursites123.com/?type=hp&ts=145224 ... X61F8F5KNS
[-] [C:\Users\Pokladna2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://yoursites123.com/wefavicon.ico
[-] [C:\Users\Pokladna2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Deleted : hxxp://yoursites123.com/web?type=ds&ts=1452240958&z=2b4d66d712b701f097c905dg8z6wdodo2z7e4t2q8o&from=wpm01073&uid=TOSHIBAXMK3261GSYN_61F8F5KNSXX61F8F5KNS&q={searchTerms}
[-] [C:\Users\Pokladna2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.yoursites123.com/?type=hp&ts=145224 ... X61F8F5KNS

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [3986 bytes] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pokladna2 at 2016-01-19 20:40:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 35 GB (12%) free of 282 GB
Total RAM: 3006 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:40:44, on 19.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
C:\Program Files\trend micro\Pokladna2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Nike+ Connect] "C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - (no file)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16042 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
c:\windows\system32\svchost.exe -k gpsvcgroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
c:\windows\system32\svchost.exe -k networkservice
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
"taskhost.exe"
C:\windows\Explorer.EXE
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
c:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 4764
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
szndesktop.exe default start
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\windows\system32\conhost.exe "-1562231711-15820348241764320817-169412460211521697862030929705-405145266734271359
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\System32\alg.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
C:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
c:\windows\system32\svchost.exe -k localservicepeernet
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe"
-Minimized
C:\windows\system32\igfxext.exe -Embedding
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\sppsvc.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Connection Manager</Title><Text>Wi-Fi: Připojeno
Bluetooth®: Zapnuto
Síť LAN: Nepřipojeno</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</IconPath><ID>1</ID><Path>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</Path><Parameters>OpenMainWindow</Parameters></Toast></hpNotification>"
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="5604.0.817052254\2082785064" "C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5604 "\\.\pipe\gecko-crash-server-pipe.5604" plugin
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe" --proxy-stub-channel=Flash6516.6313A0B8.14300 --host-broker-channel=Flash6516.6313A0B8.12162 --host-pid=6516 --host-npapi-version=28 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll"
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe" --channel=4600.001CF284.1948747317 --proxy-stub-channel=Flash6516.6313A0B8.14300 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskeng.exe {5E1BBE5F-BAE1-4B7F-9B4C-F35F10AAC8EA}
"C:\Users\Pokladna2\Desktop\ost\Ost 2\Programy\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMioCyclo100PlugIn.dll
npMioPlugIn.dll
nppdf32.dll

C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\
webssearches.xml
yoursites123.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2000-01-01 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2000-01-01 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2000-01-01 416024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe [2015-06-09 36705800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nike+ Connect]
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Nike+ Connect"=C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

C:\Users\Pokladna2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2000-01-01 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-18 22:47:52 ----A---- C:\windows\system32\drivers\iSafeNetFilter.sys
2016-01-18 22:46:58 ----D---- C:\Users\Pokladna2\AppData\Roaming\Elex-tech
2016-01-13 00:03:49 ----D---- C:\rsit
2016-01-12 09:29:49 ----D---- C:\windows\system32\log
2016-01-12 09:29:32 ----D---- C:\Program Files (x86)\Elex-tech
2016-01-08 09:15:50 ----D---- C:\ProgramData\QWdMQ
2016-01-07 09:36:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-28 17:30:00 ----A---- C:\windows\system32\MetaViewer64.dll
2015-12-26 22:13:42 ----D---- C:\Program Files (x86)\Warcraft III - Gold Edition
2015-12-24 14:07:42 ----D---- C:\Users\Pokladna2\AppData\Roaming\uplay
2015-12-23 01:06:03 ----D---- C:\Program Files (x86)\Ubisoft
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\xactengine3_7.dll
2015-12-23 01:03:10 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2015-12-23 01:03:10 ----A---- C:\windows\system32\D3DCompiler_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dcsx_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\system32\D3DX9_43.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\X3DAudio1_7.dll
2015-12-23 01:03:04 ----A---- C:\windows\system32\XAudio2_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\D3DCompiler_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dcsx_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\system32\D3DX9_42.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\d3dx10_41.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\D3DCompiler_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\system32\D3DX9_41.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAPOFX1_3.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\xactengine3_4.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\D3DCompiler_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\system32\D3DX9_40.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAPOFX1_2.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\X3DAudio1_5.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAPOFX1_1.dll
2015-12-23 01:02:48 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2015-12-23 01:02:48 ----A---- C:\windows\system32\xactengine3_2.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\D3DCompiler_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\system32\D3DX9_39.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\X3DAudio1_4.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\system32\D3DX9_38.dll
2015-12-23 01:02:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2015-12-23 01:02:36 ----A---- C:\windows\system32\XAudio2_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\system32\xactengine3_0.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\D3DCompiler_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\system32\D3DX9_37.dll
2015-12-23 01:02:30 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2015-12-23 01:02:30 ----A---- C:\windows\system32\xactengine2_10.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\D3DCompiler_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\system32\d3dx9_36.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\d3dx10_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\D3DCompiler_35.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\X3DAudio1_2.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\D3DCompiler_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\d3dx9_34.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\D3DCompiler_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\system32\d3dx9_33.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_5.dll
2015-12-23 01:02:18 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2015-12-23 01:02:18 ----A---- C:\windows\system32\d3dx10.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\x3daudio1_1.dll
2015-12-23 01:02:15 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2015-12-23 01:02:15 ----A---- C:\windows\system32\d3dx9_31.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xactengine2_3.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xactengine2_2.dll
2015-12-23 01:02:12 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2015-12-23 01:02:12 ----A---- C:\windows\system32\xactengine2_1.dll
2015-12-23 01:02:04 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2015-12-23 01:02:04 ----A---- C:\windows\system32\d3dx9_30.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\x3daudio1_0.dll
2015-12-23 01:02:00 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2015-12-23 01:02:00 ----A---- C:\windows\system32\d3dx9_29.dll
2015-12-23 01:01:58 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2015-12-23 01:01:58 ----A---- C:\windows\system32\d3dx9_28.dll
2015-12-23 01:01:56 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2015-12-23 01:01:56 ----A---- C:\windows\system32\d3dx9_27.dll
2015-12-23 01:01:54 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2015-12-23 01:01:54 ----A---- C:\windows\system32\d3dx9_26.dll
2015-12-23 01:01:53 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2015-12-23 01:01:53 ----A---- C:\windows\system32\d3dx9_25.dll
2015-12-23 01:01:50 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2015-12-23 01:01:50 ----A---- C:\windows\system32\d3dx9_24.dll

======List of files/folders modified in the last 1 month======

2016-01-19 20:40:37 ----D---- C:\Program Files\trend micro
2016-01-19 20:38:59 ----D---- C:\Users\Pokladna2\AppData\Roaming\Skype
2016-01-19 20:37:25 ----D---- C:\Users\Pokladna2\AppData\Roaming\Seznam.cz
2016-01-19 20:36:40 ----D---- C:\windows\Temp
2016-01-19 20:34:57 ----A---- C:\windows\SYSWOW64\log.txt
2016-01-19 20:32:31 ----D---- C:\windows\system32\config
2016-01-19 20:27:53 ----D---- C:\Users\Pokladna2\AppData\Roaming\vlc
2016-01-19 20:06:17 ----D---- C:\windows\SysWOW64
2016-01-19 20:06:14 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 11:58:30 ----SHD---- C:\System Volume Information
2016-01-19 11:53:57 ----D---- C:\windows\inf
2016-01-19 10:11:00 ----D---- C:\windows\Prefetch
2016-01-19 09:26:27 ----D---- C:\Windows
2016-01-18 22:47:52 ----D---- C:\windows\system32\drivers
2016-01-18 22:32:06 ----D---- C:\AdwCleaner
2016-01-18 12:45:19 ----D---- C:\windows\system32\catroot2
2016-01-15 13:07:31 ----D---- C:\Users\Pokladna2\AppData\Roaming\TeamViewer
2016-01-14 14:54:59 ----HD---- C:\ProgramData
2016-01-14 14:54:44 ----D---- C:\Program Files (x86)
2016-01-14 13:43:33 ----RD---- C:\Program Files
2016-01-14 13:42:03 ----D---- C:\windows\System32
2016-01-14 13:41:54 ----D---- C:\windows\system32\Tasks
2016-01-14 13:41:50 ----D---- C:\windows\Tasks
2016-01-13 22:53:04 ----SHD---- C:\windows\Installer
2016-01-09 18:06:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-08 20:10:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-05 19:04:02 ----D---- C:\Program Files (x86)\stepmania.com
2015-12-28 17:30:23 ----D---- C:\Program Files\HighSky Trader 5
2015-12-28 17:30:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\MetaQuotes
2015-12-26 21:49:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\DAEMON Tools Lite
2015-12-23 01:26:50 ----D---- C:\windows\SoftwareDistribution
2015-12-23 01:20:10 ----D---- C:\windows\Logs
2015-12-23 01:02:12 ----RSD---- C:\windows\assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2014-08-28 386680]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-09-09 1152632]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-09 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110922.030\IDSvia64.sys [2011-09-08 488568]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-05-14 260856]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-08-19 110112]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-08-19 52440]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-08-19 103904]
R1 iSafeNetFilter;YAC NDIS Driver; C:\windows\system32\DRIVERS\iSafeNetFilter.sys [2015-06-30 52392]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-09 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2000-01-01 12310112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 tap0901;TAP-Win32 Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2011-07-01 31232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\windows\system32\DRIVERS\iSafeKrnlBoot.sys []
S3 mvusbews;USB EWS Device; C:\windows\System32\Drivers\mvusbews.sys [2010-10-15 20480]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\ENG64.SYS [2011-09-09 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\EX64.SYS [2011-09-09 2048632]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;STM Virtual COM Port; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-09 126520]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-08-19 118048]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-19 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-02-28 347200]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-07-01 14848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\ProgramData\QWdMQ

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pokladna2 at 2016-01-19 21:46:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 36 GB (13%) free of 282 GB
Total RAM: 3006 MB (35% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:46:41, on 19.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPUsageTrack.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pokladna2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Nike+ Connect] "C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - (no file)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16160 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
c:\windows\system32\svchost.exe -k gpsvcgroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
c:\windows\system32\svchost.exe -k networkservice
C:\windows\System32\spoolsv.exe
taskeng.exe {7456C586-CE2E-4792-90C5-009AD55F3221}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"taskhost.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
c:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3776
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\windows\notepad.exe" C:\_OTM\MovedFiles\01192016_212636.log
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
C:\windows\System32\alg.exe
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
C:\windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
szndesktop.exe default start
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\windows\system32\conhost.exe "279787105-1447303365-5050596434390720571914239112-18377127881135591293-1203685220
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --apps-gallery-install-auto-confirm-for-tests=accept --incognito http://software.seznam.cz/listicka?browser=chrome#auto
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPUsageTrack.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4224.0.451106512\592614730" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,23,51 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2559 --ignored=" --type=renderer " /prefetch:822062411
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe" /start IDLE_APP_EVENT_{90140011-0066-0405-0000-0000000FF1CE}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/Control/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4224.1.1553321500\2107823459" --font-cache-shared-handle=1920 /prefetch:673131151
c:\windows\system32\svchost.exe -k localservicepeernet
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Pokladna2\Desktop\ost\Ost 2\Programy\RSITx64.exe"
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMioCyclo100PlugIn.dll
npMioPlugIn.dll
nppdf32.dll

C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\
webssearches.xml
yoursites123.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2000-01-01 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2000-01-01 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2000-01-01 416024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe [2015-06-09 36705800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nike+ Connect]
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Nike+ Connect"=C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

C:\Users\Pokladna2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2000-01-01 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-19 21:26:36 ----D---- C:\_OTM
2016-01-18 22:47:52 ----A---- C:\windows\system32\drivers\iSafeNetFilter.sys
2016-01-18 22:46:58 ----D---- C:\Users\Pokladna2\AppData\Roaming\Elex-tech
2016-01-13 00:03:49 ----D---- C:\rsit
2016-01-12 09:29:49 ----D---- C:\windows\system32\log
2016-01-12 09:29:32 ----D---- C:\Program Files (x86)\Elex-tech
2016-01-07 09:36:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-28 17:30:00 ----A---- C:\windows\system32\MetaViewer64.dll
2015-12-26 22:13:42 ----D---- C:\Program Files (x86)\Warcraft III - Gold Edition
2015-12-24 14:07:42 ----D---- C:\Users\Pokladna2\AppData\Roaming\uplay
2015-12-23 01:06:03 ----D---- C:\Program Files (x86)\Ubisoft
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\xactengine3_7.dll
2015-12-23 01:03:10 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2015-12-23 01:03:10 ----A---- C:\windows\system32\D3DCompiler_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dcsx_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\system32\D3DX9_43.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\X3DAudio1_7.dll
2015-12-23 01:03:04 ----A---- C:\windows\system32\XAudio2_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\D3DCompiler_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dcsx_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\system32\D3DX9_42.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\d3dx10_41.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\D3DCompiler_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\system32\D3DX9_41.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAPOFX1_3.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\xactengine3_4.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\D3DCompiler_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\system32\D3DX9_40.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAPOFX1_2.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\X3DAudio1_5.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAPOFX1_1.dll
2015-12-23 01:02:48 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2015-12-23 01:02:48 ----A---- C:\windows\system32\xactengine3_2.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\D3DCompiler_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\system32\D3DX9_39.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\X3DAudio1_4.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\system32\D3DX9_38.dll
2015-12-23 01:02:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2015-12-23 01:02:36 ----A---- C:\windows\system32\XAudio2_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\system32\xactengine3_0.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\D3DCompiler_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\system32\D3DX9_37.dll
2015-12-23 01:02:30 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2015-12-23 01:02:30 ----A---- C:\windows\system32\xactengine2_10.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\D3DCompiler_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\system32\d3dx9_36.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\d3dx10_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\D3DCompiler_35.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\X3DAudio1_2.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\D3DCompiler_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\d3dx9_34.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\D3DCompiler_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\system32\d3dx9_33.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_5.dll
2015-12-23 01:02:18 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2015-12-23 01:02:18 ----A---- C:\windows\system32\d3dx10.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\x3daudio1_1.dll
2015-12-23 01:02:15 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2015-12-23 01:02:15 ----A---- C:\windows\system32\d3dx9_31.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xactengine2_3.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xactengine2_2.dll
2015-12-23 01:02:12 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2015-12-23 01:02:12 ----A---- C:\windows\system32\xactengine2_1.dll
2015-12-23 01:02:04 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2015-12-23 01:02:04 ----A---- C:\windows\system32\d3dx9_30.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\x3daudio1_0.dll
2015-12-23 01:02:00 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2015-12-23 01:02:00 ----A---- C:\windows\system32\d3dx9_29.dll
2015-12-23 01:01:58 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2015-12-23 01:01:58 ----A---- C:\windows\system32\d3dx9_28.dll
2015-12-23 01:01:56 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2015-12-23 01:01:56 ----A---- C:\windows\system32\d3dx9_27.dll
2015-12-23 01:01:54 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2015-12-23 01:01:54 ----A---- C:\windows\system32\d3dx9_26.dll
2015-12-23 01:01:53 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2015-12-23 01:01:53 ----A---- C:\windows\system32\d3dx9_25.dll
2015-12-23 01:01:50 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2015-12-23 01:01:50 ----A---- C:\windows\system32\d3dx9_24.dll

======List of files/folders modified in the last 1 month======

2016-01-19 21:46:40 ----D---- C:\Program Files\trend micro
2016-01-19 21:45:56 ----D---- C:\windows\Temp
2016-01-19 21:45:36 ----D---- C:\windows\system32\config
2016-01-19 21:42:55 ----A---- C:\windows\SYSWOW64\log.txt
2016-01-19 21:26:40 ----HD---- C:\ProgramData
2016-01-19 21:26:40 ----D---- C:\windows\Tasks
2016-01-19 21:22:29 ----D---- C:\Users\Pokladna2\AppData\Roaming\vlc
2016-01-19 20:58:57 ----D---- C:\Users\Pokladna2\AppData\Roaming\Skype
2016-01-19 20:37:25 ----D---- C:\Users\Pokladna2\AppData\Roaming\Seznam.cz
2016-01-19 20:06:17 ----D---- C:\windows\SysWOW64
2016-01-19 20:06:14 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 11:58:30 ----SHD---- C:\System Volume Information
2016-01-19 11:53:57 ----D---- C:\windows\inf
2016-01-19 10:11:00 ----D---- C:\windows\Prefetch
2016-01-19 09:26:27 ----D---- C:\Windows
2016-01-18 22:47:52 ----D---- C:\windows\system32\drivers
2016-01-18 22:32:06 ----D---- C:\AdwCleaner
2016-01-18 12:45:19 ----D---- C:\windows\system32\catroot2
2016-01-15 13:07:31 ----D---- C:\Users\Pokladna2\AppData\Roaming\TeamViewer
2016-01-14 14:54:44 ----D---- C:\Program Files (x86)
2016-01-14 13:43:33 ----RD---- C:\Program Files
2016-01-14 13:42:03 ----D---- C:\windows\System32
2016-01-14 13:41:54 ----D---- C:\windows\system32\Tasks
2016-01-13 22:53:04 ----SHD---- C:\windows\Installer
2016-01-09 18:06:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-08 20:10:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-05 19:04:02 ----D---- C:\Program Files (x86)\stepmania.com
2015-12-28 17:30:23 ----D---- C:\Program Files\HighSky Trader 5
2015-12-28 17:30:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\MetaQuotes
2015-12-26 21:49:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\DAEMON Tools Lite
2015-12-23 01:26:50 ----D---- C:\windows\SoftwareDistribution
2015-12-23 01:20:10 ----D---- C:\windows\Logs
2015-12-23 01:02:12 ----RSD---- C:\windows\assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2014-08-28 386680]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-09-09 1152632]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-09 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110922.030\IDSvia64.sys [2011-09-08 488568]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-05-14 260856]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-08-19 110112]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-08-19 52440]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-08-19 103904]
R1 iSafeNetFilter;YAC NDIS Driver; C:\windows\system32\DRIVERS\iSafeNetFilter.sys [2015-06-30 52392]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-09 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2000-01-01 12310112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 tap0901;TAP-Win32 Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2011-07-01 31232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\windows\system32\DRIVERS\iSafeKrnlBoot.sys []
S3 mvusbews;USB EWS Device; C:\windows\System32\Drivers\mvusbews.sys [2010-10-15 20480]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\ENG64.SYS [2011-09-09 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\EX64.SYS [2011-09-09 2048632]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;STM Virtual COM Port; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-08-19 118048]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-09 126520]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-19 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-02-28 347200]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-07-01 14848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]

-----------------EOF-----------------

Dvouklikem na soubor C:\Program Files\trend micro\Pokladna2.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Tak dnes se chyba s nacitanim webovych stranek ukazala znovu. Pomohl az restart.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pokladna2 at 2016-01-21 12:50:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 10 GB (3%) free of 282 GB
Total RAM: 3006 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:50:14, on 21.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
C:\Program Files\trend micro\Pokladna2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Nike+ Connect] "C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - (no file)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15996 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
winlogon.exe
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
c:\windows\system32\svchost.exe -k gpsvcgroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
c:\windows\system32\svchost.exe -k networkservice
C:\windows\System32\spoolsv.exe
taskeng.exe {3003B1D5-FB2D-490D-A447-89D8BEB0562A}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
c:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3076
C:\windows\system32\wbem\unsecapp.exe -Embedding
"taskhost.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
C:\windows\System32\alg.exe
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
szndesktop.exe default start
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\windows\system32\conhost.exe "-540187191-1486736957-13085607581481780730748089960805429204132156656-2042282273
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
C:\windows\servicing\TrustedInstaller.exe
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-eb3cbc4d-9021-40f3-bd29-0a2459f1f2c9 -SystemEventPortName:HostProcess-8ddc4656-5599-47b4-a7b2-f0b48c8f47af -IoCancelEventPortName:HostProcess-933528d5-ed33-4189-8f07-4dfdebfa80cb -NonStateChangingEventPortName:HostProcess-36c31f16-c9b6-4777-a0bd-c6ea7abfc505 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:05f58f38-a43d-4956-acff-233203a222ba -DeviceGroupId:
C:\Windows\system32\DeviceDisplayObjectProvider.exe -Embedding
C:\windows\system32\DXPServer.exe -Embedding
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
-Minimized
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\sppsvc.exe
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\igfxext.exe -Embedding
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Connection Manager</Title><Text>Wi-Fi: Připojeno
Bluetooth®: Zapnuto
Síť LAN: Nepřipojeno</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</IconPath><ID>1</ID><Path>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</Path><Parameters>OpenMainWindow</Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="6968.0.40780146\814042614" "C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6968 "\\.\pipe\gecko-crash-server-pipe.6968" plugin
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe" --proxy-stub-channel=Flash5496.64AFA0B8.13559 --host-broker-channel=Flash5496.64AFA0B8.2889 --host-pid=5496 --host-npapi-version=28 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll"
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe" --channel=8048.002AF530.872204921 --proxy-stub-channel=Flash5496.64AFA0B8.13559 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
c:\windows\system32\svchost.exe -k wersvcgroup
werfault.exe /h /shared Global\5749dd53fe2f40bcbd203596b4df9baf
"C:\Users\Pokladna2\Desktop\ost\Ost 2\Programy\RSITx64.exe"
"C:\windows\system32\wermgr.exe" "-queuereporting_svc" "C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_svchost.exe_857ba9be25ddfec1db45dbc90893af66c672ba8_cab_168f68d0"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMioCyclo100PlugIn.dll
npMioPlugIn.dll
nppdf32.dll

C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\
webssearches.xml
yoursites123.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2000-01-01 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2000-01-01 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2000-01-01 416024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe [2015-06-09 36705800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nike+ Connect]
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Nike+ Connect"=C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

C:\Users\Pokladna2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2000-01-01 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-21 12:43:52 ----D---- C:\rsit
2016-01-18 22:47:52 ----A---- C:\windows\system32\drivers\iSafeNetFilter.sys
2016-01-18 22:46:58 ----D---- C:\Users\Pokladna2\AppData\Roaming\Elex-tech
2016-01-12 09:29:49 ----D---- C:\windows\system32\log
2016-01-12 09:29:32 ----D---- C:\Program Files (x86)\Elex-tech
2016-01-07 09:36:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-28 17:30:00 ----A---- C:\windows\system32\MetaViewer64.dll
2015-12-26 22:13:42 ----D---- C:\Program Files (x86)\Warcraft III - Gold Edition
2015-12-24 14:07:42 ----D---- C:\Users\Pokladna2\AppData\Roaming\uplay
2015-12-23 01:06:03 ----D---- C:\Program Files (x86)\Ubisoft
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAudio2_7.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\XAPOFX1_5.dll
2015-12-23 01:03:11 ----A---- C:\windows\system32\xactengine3_7.dll
2015-12-23 01:03:10 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2015-12-23 01:03:10 ----A---- C:\windows\system32\D3DCompiler_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx11_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dx10_43.dll
2015-12-23 01:03:09 ----A---- C:\windows\system32\d3dcsx_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2015-12-23 01:03:07 ----A---- C:\windows\system32\D3DX9_43.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAudio2_6.dll
2015-12-23 01:03:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\xactengine3_6.dll
2015-12-23 01:03:05 ----A---- C:\windows\system32\X3DAudio1_7.dll
2015-12-23 01:03:04 ----A---- C:\windows\system32\XAudio2_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\xactengine3_5.dll
2015-12-23 01:03:03 ----A---- C:\windows\system32\D3DCompiler_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dx11_42.dll
2015-12-23 01:03:01 ----A---- C:\windows\system32\d3dcsx_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2015-12-23 01:03:00 ----A---- C:\windows\system32\D3DX9_42.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\d3dx10_41.dll
2015-12-23 01:02:59 ----A---- C:\windows\system32\D3DCompiler_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2015-12-23 01:02:57 ----A---- C:\windows\system32\D3DX9_41.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAudio2_4.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\XAPOFX1_3.dll
2015-12-23 01:02:56 ----A---- C:\windows\system32\xactengine3_4.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\X3DAudio1_6.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\d3dx10_40.dll
2015-12-23 01:02:55 ----A---- C:\windows\system32\D3DCompiler_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2015-12-23 01:02:53 ----A---- C:\windows\system32\D3DX9_40.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAudio2_3.dll
2015-12-23 01:02:52 ----A---- C:\windows\system32\XAPOFX1_2.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\xactengine3_3.dll
2015-12-23 01:02:51 ----A---- C:\windows\system32\X3DAudio1_5.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAudio2_2.dll
2015-12-23 01:02:50 ----A---- C:\windows\system32\XAPOFX1_1.dll
2015-12-23 01:02:48 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2015-12-23 01:02:48 ----A---- C:\windows\system32\xactengine3_2.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\d3dx10_39.dll
2015-12-23 01:02:47 ----A---- C:\windows\system32\D3DCompiler_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2015-12-23 01:02:46 ----A---- C:\windows\system32\D3DX9_39.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAudio2_1.dll
2015-12-23 01:02:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\xactengine3_1.dll
2015-12-23 01:02:41 ----A---- C:\windows\system32\X3DAudio1_4.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\d3dx10_38.dll
2015-12-23 01:02:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2015-12-23 01:02:39 ----A---- C:\windows\system32\D3DX9_38.dll
2015-12-23 01:02:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2015-12-23 01:02:36 ----A---- C:\windows\system32\XAudio2_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2015-12-23 01:02:34 ----A---- C:\windows\system32\xactengine3_0.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\X3DAudio1_3.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\d3dx10_37.dll
2015-12-23 01:02:33 ----A---- C:\windows\system32\D3DCompiler_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2015-12-23 01:02:31 ----A---- C:\windows\system32\D3DX9_37.dll
2015-12-23 01:02:30 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2015-12-23 01:02:30 ----A---- C:\windows\system32\xactengine2_10.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\d3dx10_36.dll
2015-12-23 01:02:29 ----A---- C:\windows\system32\D3DCompiler_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2015-12-23 01:02:28 ----A---- C:\windows\system32\d3dx9_36.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\xactengine2_9.dll
2015-12-23 01:02:27 ----A---- C:\windows\system32\d3dx10_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\d3dx9_35.dll
2015-12-23 01:02:26 ----A---- C:\windows\system32\D3DCompiler_35.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\xactengine2_8.dll
2015-12-23 01:02:25 ----A---- C:\windows\system32\X3DAudio1_2.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\d3dx10_34.dll
2015-12-23 01:02:24 ----A---- C:\windows\system32\D3DCompiler_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\xinput1_3.dll
2015-12-23 01:02:23 ----A---- C:\windows\system32\d3dx9_34.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\xactengine2_7.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\d3dx10_33.dll
2015-12-23 01:02:21 ----A---- C:\windows\system32\D3DCompiler_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2015-12-23 01:02:20 ----A---- C:\windows\system32\d3dx9_33.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_6.dll
2015-12-23 01:02:19 ----A---- C:\windows\system32\xactengine2_5.dll
2015-12-23 01:02:18 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2015-12-23 01:02:18 ----A---- C:\windows\system32\d3dx10.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\xactengine2_4.dll
2015-12-23 01:02:16 ----A---- C:\windows\system32\x3daudio1_1.dll
2015-12-23 01:02:15 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2015-12-23 01:02:15 ----A---- C:\windows\system32\d3dx9_31.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xinput1_2.dll
2015-12-23 01:02:14 ----A---- C:\windows\system32\xactengine2_3.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xinput1_1.dll
2015-12-23 01:02:13 ----A---- C:\windows\system32\xactengine2_2.dll
2015-12-23 01:02:12 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2015-12-23 01:02:12 ----A---- C:\windows\system32\xactengine2_1.dll
2015-12-23 01:02:04 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2015-12-23 01:02:04 ----A---- C:\windows\system32\d3dx9_30.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\xactengine2_0.dll
2015-12-23 01:02:02 ----A---- C:\windows\system32\x3daudio1_0.dll
2015-12-23 01:02:00 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2015-12-23 01:02:00 ----A---- C:\windows\system32\d3dx9_29.dll
2015-12-23 01:01:58 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2015-12-23 01:01:58 ----A---- C:\windows\system32\d3dx9_28.dll
2015-12-23 01:01:56 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2015-12-23 01:01:56 ----A---- C:\windows\system32\d3dx9_27.dll
2015-12-23 01:01:54 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2015-12-23 01:01:54 ----A---- C:\windows\system32\d3dx9_26.dll
2015-12-23 01:01:53 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2015-12-23 01:01:53 ----A---- C:\windows\system32\d3dx9_25.dll
2015-12-23 01:01:50 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2015-12-23 01:01:50 ----A---- C:\windows\system32\d3dx9_24.dll

======List of files/folders modified in the last 1 month======

2016-01-21 12:50:14 ----D---- C:\windows\Prefetch
2016-01-21 12:50:11 ----D---- C:\Program Files\trend micro
2016-01-21 12:49:37 ----D---- C:\windows\Temp
2016-01-21 12:47:40 ----D---- C:\Users\Pokladna2\AppData\Roaming\Seznam.cz
2016-01-21 12:45:07 ----A---- C:\windows\SYSWOW64\log.txt
2016-01-21 12:42:57 ----D---- C:\windows\system32\config
2016-01-21 12:16:04 ----SHD---- C:\System Volume Information
2016-01-21 00:10:59 ----D---- C:\Users\Pokladna2\AppData\Roaming\vlc
2016-01-19 22:47:08 ----D---- C:\Windows
2016-01-19 21:26:40 ----HD---- C:\ProgramData
2016-01-19 21:26:40 ----D---- C:\windows\Tasks
2016-01-19 20:58:57 ----D---- C:\Users\Pokladna2\AppData\Roaming\Skype
2016-01-19 20:06:17 ----D---- C:\windows\SysWOW64
2016-01-19 20:06:14 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 11:53:57 ----D---- C:\windows\inf
2016-01-18 22:47:52 ----D---- C:\windows\system32\drivers
2016-01-18 22:32:06 ----D---- C:\AdwCleaner
2016-01-18 12:45:19 ----D---- C:\windows\system32\catroot2
2016-01-15 13:07:31 ----D---- C:\Users\Pokladna2\AppData\Roaming\TeamViewer
2016-01-14 14:54:44 ----D---- C:\Program Files (x86)
2016-01-14 13:43:33 ----RD---- C:\Program Files
2016-01-14 13:42:03 ----D---- C:\windows\System32
2016-01-14 13:41:54 ----D---- C:\windows\system32\Tasks
2016-01-13 22:53:04 ----SHD---- C:\windows\Installer
2016-01-09 18:06:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-08 20:10:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-05 19:04:02 ----D---- C:\Program Files (x86)\stepmania.com
2015-12-28 17:30:23 ----D---- C:\Program Files\HighSky Trader 5
2015-12-28 17:30:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\MetaQuotes
2015-12-26 21:49:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\DAEMON Tools Lite
2015-12-23 01:26:50 ----D---- C:\windows\SoftwareDistribution
2015-12-23 01:20:10 ----D---- C:\windows\Logs
2015-12-23 01:02:12 ----RSD---- C:\windows\assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2014-08-28 386680]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-09-09 1152632]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-09 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110922.030\IDSvia64.sys [2011-09-08 488568]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-05-14 260856]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-08-19 110112]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-08-19 52440]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-08-19 103904]
R1 iSafeNetFilter;YAC NDIS Driver; C:\windows\system32\DRIVERS\iSafeNetFilter.sys [2015-06-30 52392]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-09 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2000-01-01 12310112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 tap0901;TAP-Win32 Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2011-07-01 31232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\windows\system32\DRIVERS\iSafeKrnlBoot.sys []
S3 mvusbews;USB EWS Device; C:\windows\System32\Drivers\mvusbews.sys [2010-10-15 20480]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\ENG64.SYS [2011-09-09 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\EX64.SYS [2011-09-09 2048632]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;STM Virtual COM Port; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-09 126520]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-08-19 118048]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-19 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-02-28 347200]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-07-01 14848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]

-----------------EOF-----------------

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 21.1.2016
Čas skenování: 22:20
Protokol: 1.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2016.01.21.05
Databáze rootkitů: v2016.01.20.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Pokladna2

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 391490
Uplynulý čas: 29 min, 32 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 3
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe, 952, , [8ebb2e0e5346023496bd58d050b12fd1]
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe, 404, , [d0792616811848ee391a88a0808158a8]
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe, 1648, , [a9a09e9ec0d9181e193a7bad04fd11ef]

Moduly: 101
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSvc.dll, , [a2a779c33366092d371c47e1a45d30d0],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iImportLib.dll, , [282178c4435680b668ebae7a9a67738d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iImportLib.dll, , [282178c4435680b668ebae7a9a67738d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iImportLib.dll, , [282178c4435680b668ebae7a9a67738d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\curlpp.dll, , [8fba1725f3a6a39360f3de4acf3249b7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\curlpp.dll, , [8fba1725f3a6a39360f3de4acf3249b7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\curlpp.dll, , [8fba1725f3a6a39360f3de4acf3249b7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeupbiz.dll, , [fb4ee8540297360071e24fd9e81954ac],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafepxy.dll, , [98b124187920e94d361de741c63bd828],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafepxy.dll, , [98b124187920e94d361de741c63bd828],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafepxy.dll, , [98b124187920e94d361de741c63bd828],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommu.dll, , [56f38eae9108cb6b56fd71b7aa577a86],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommu.dll, , [56f38eae9108cb6b56fd71b7aa577a86],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommu.dll, , [56f38eae9108cb6b56fd71b7aa577a86],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isaferpt.dll, , [5bee8ab29405e1554e0567c19869da26],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isaferpt.dll, , [5bee8ab29405e1554e0567c19869da26],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isaferpt.dll, , [5bee8ab29405e1554e0567c19869da26],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ipcproxy.dll, , [1a2fd765dfba7cbacb8866c2887913ed],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ipcproxy.dll, , [1a2fd765dfba7cbacb8866c2887913ed],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSvc2.dll, , [3a0f16267f1aae8852012701a75a1ce4],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafebs.dll, , [3316e359bddc082eb69d181013ee6e92],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeAdless.dll, , [f75250ec841568ceb2a11b0dd03102fe],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafenpf.dll, , [6edbb18b851402347fd41e0a71906f91],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeCheckEngine.dll, , [b594013b3e5bba7cafa4270161a09b65],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeEngineBase.dll, , [fd4cec50cbceec4a242f56d221e00ff1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlCall.dll, , [26232d0f9801181e2a291b0d17ea659b],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMonCall.dll, , [004940fc3e5b191db99a8c9c7091e31d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeDisp.dll, , [b198330906932214252eb375a958ab55],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemc.dll, , [074299a30b8e57df5af972b653aec23e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemc.dll, , [074299a30b8e57df5af972b653aec23e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlShell.dll, , [0841c9737524b18594bfd05844bdbb45],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemadwc.dll, , [5cedf7455643310520334bddab569d63],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeEngineDisp.dll, , [ed5cc973336672c4282bf137996818e8],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafebase.dll, , [fe4b76c6efaacf673f1494940001d62a],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafebase.dll, , [fe4b76c6efaacf673f1494940001d62a],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommon.dll, , [6adf2f0d1b7e85b1242f2afe08f919e7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTpNodisturb.dll, , [cf7a1d1f06936bcb262d3cec46bb3fc1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPProtect.dll, , [f2573507c8d179bd153ed1575ca5df21],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPFeedback.dll, , [73d6c6763267f0467bd85aceb24f41bf],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPDesk.dll, , [2029a8948019cc6a9fb47cac0cf54fb1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPFloaty.dll, , [2623f24aa1f823130a49ca5ee61b3ac6],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPStartupAssist.dll, , [c584c27a03965cdace85d256877a17e9],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPVirus.dll, , [c58484b87326162067ecdf4927da7d83],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPPush.dll, , [09405be1e3b63afcbf940424bd44629e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPMsgCenter.dll, , [1534be7ecfcadf5756fd81a76a979070],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPAutoClean.dll, , [7ecb1a221f7aa98d0e45d751ee1313ed],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libcurl.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libcurl.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libcurl.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libeay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libeay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libeay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libpng.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcp110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcp110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcp110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcr110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcr110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcr110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ouilibx.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\sqlite3.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\sqlite3.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\sqlite3.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ssleay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ssleay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ssleay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fupd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\antirk.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\ctools.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\decexp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\emlib.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\falgorit.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fgui.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filau.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filcmn.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filcpt.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filppi.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filvss.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\lsf.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\message.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\psmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\quarantine.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\tsc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\twsdk.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\twsupd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unacev2.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unchm.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unemb.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unmisc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unrar.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unsevzip.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unzip32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\vfst.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\w32tools.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\zipexp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugins\filavutd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugins\virut.tpl, , [ba8ffe3eaaefac8ab93ccad819e9c937],

Klíče registru: 10
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeService, , [8ebb2e0e5346023496bd58d050b12fd1],
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeNetFilter, , [0c3def4d5148072fed6669bf629f37c9],
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeKrnlKit, , [c386d468dbbefe38a3b07bad61a0728e],
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeKrnlR3, , [dc6d1329cdccdb5bbc9748e0bc45a060],
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeKrnl, , [b6930339badf8caa252e64c4e21fd62a],
FraudTool.YAC, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iSafeKrnlMon, , [113863d92079da5c77dc84a47f8216ea],
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [ad9ccf6debae88aec12f8ca6b05450b0],
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [39105ae2b6e3d066648c939ffb09e917],
PUP.Optional.YourSites123.ShrtCln, HKU\S-1-5-21-1490178772-4250543190-1267179993-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [dc6daf8d8f0a3df925ca35fd43c1fe02],
FraudTool.YAC, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\iSafe, , [ba8ffe3eaaefac8ab93ccad819e9c937],

Hodnoty registru: 3
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://yoursites123.com/web?type=ds&ts= ... earchTerms}, , [ad9ccf6debae88aec12f8ca6b05450b0]
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://yoursites123.com/web?type=ds&ts= ... earchTerms}, , [39105ae2b6e3d066648c939ffb09e917]
PUP.Optional.YourSites123.ShrtCln, HKU\S-1-5-21-1490178772-4250543190-1267179993-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://yoursites123.com/web?type=ds&ts= ... earchTerms}, , [dc6daf8d8f0a3df925ca35fd43c1fe02]

Data registru: 6
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[2326122af2a7d462e00bab140ff514ec]
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[d772dc60f3a64bebe2093f80e81c1be5]
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[87c2b884eeabef47b73409b6cd373ec2]
PUP.Optional.YourSites123.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[a4a5d567158458de3eadc5fa9c68e41c]
PUP.Optional.YourSites123.ShrtCln, HKU\S-1-5-21-1490178772-4250543190-1267179993-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[d17894a86b2ebb7b776cb00fe024aa56]
PUP.Optional.YourSites123.ShrtCln, HKU\S-1-5-21-1490178772-4250543190-1267179993-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS, Dobré: (www.google.com), Špatné: (http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS),,[bc8dc9734851171f4d96249bea1a21df]

Složky: 187
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\iDesk, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\log, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\cache, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\defs, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\quarantine, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\trustzone, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\font, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\pfdatapfdata, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\pfdatapfdata\SSL, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\foldericon, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\layout\newclean, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\layout\pop, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Appstore, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\foldericon, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\style, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\logs, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugins, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\quarantine, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\task, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\temp, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\trace, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\x64, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\0, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\1, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine0, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine1, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine2, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\temp, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user, , [ba8ffe3eaaefac8ab93ccad819e9c937],

Soubory: 1731
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe, , [8ebb2e0e5346023496bd58d050b12fd1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSvc.dll, , [a2a779c33366092d371c47e1a45d30d0],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iImportLib.dll, , [282178c4435680b668ebae7a9a67738d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\curlpp.dll, , [8fba1725f3a6a39360f3de4acf3249b7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeupbiz.dll, , [fb4ee8540297360071e24fd9e81954ac],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafepxy.dll, , [98b124187920e94d361de741c63bd828],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommu.dll, , [56f38eae9108cb6b56fd71b7aa577a86],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isaferpt.dll, , [5bee8ab29405e1554e0567c19869da26],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ipcproxy.dll, , [1a2fd765dfba7cbacb8866c2887913ed],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe, , [d0792616811848ee391a88a0808158a8],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSvc2.dll, , [3a0f16267f1aae8852012701a75a1ce4],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafebs.dll, , [3316e359bddc082eb69d181013ee6e92],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeAdless.dll, , [f75250ec841568ceb2a11b0dd03102fe],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafenpf.dll, , [6edbb18b851402347fd41e0a71906f91],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeCheckEngine.dll, , [b594013b3e5bba7cafa4270161a09b65],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeEngineBase.dll, , [fd4cec50cbceec4a242f56d221e00ff1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlCall.dll, , [26232d0f9801181e2a291b0d17ea659b],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMonCall.dll, , [004940fc3e5b191db99a8c9c7091e31d],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeDisp.dll, , [b198330906932214252eb375a958ab55],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemc.dll, , [074299a30b8e57df5af972b653aec23e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlShell.dll, , [0841c9737524b18594bfd05844bdbb45],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemadwc.dll, , [5cedf7455643310520334bddab569d63],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeEngineDisp.dll, , [ed5cc973336672c4282bf137996818e8],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafebase.dll, , [fe4b76c6efaacf673f1494940001d62a],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe, , [a9a09e9ec0d9181e193a7bad04fd11ef],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iCommon.dll, , [6adf2f0d1b7e85b1242f2afe08f919e7],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTpNodisturb.dll, , [cf7a1d1f06936bcb262d3cec46bb3fc1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPProtect.dll, , [f2573507c8d179bd153ed1575ca5df21],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPFeedback.dll, , [73d6c6763267f0467bd85aceb24f41bf],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPDesk.dll, , [2029a8948019cc6a9fb47cac0cf54fb1],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPFloaty.dll, , [2623f24aa1f823130a49ca5ee61b3ac6],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPStartupAssist.dll, , [c584c27a03965cdace85d256877a17e9],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPVirus.dll, , [c58484b87326162067ecdf4927da7d83],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPPush.dll, , [09405be1e3b63afcbf940424bd44629e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPMsgCenter.dll, , [1534be7ecfcadf5756fd81a76a979070],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iTPAutoClean.dll, , [7ecb1a221f7aa98d0e45d751ee1313ed],
FraudTool.YAC, C:\Windows\System32\drivers\iSafeNetFilter.sys, , [0c3def4d5148072fed6669bf629f37c9],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys, , [c386d468dbbefe38a3b07bad61a0728e],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys, , [dc6d1329cdccdb5bbc9748e0bc45a060],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys, , [b6930339badf8caa252e64c4e21fd62a],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys, , [113863d92079da5c77dc84a47f8216ea],
PUP.Optional.WebsSearches, C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\webssearches.xml, , [8abf37052f6aa19569f533a007fb8c74],
PUP.Optional.YourSites123.ShrtCln, C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\searchplugins\yoursites123.xml, , [c287ec505247da5c98a770c2f1137987],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\preference.ini, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\proxyUpdate.ini, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\iDesk\desk.ini, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\log\iSafeStarts.log, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Users\Pokladna2\AppData\Roaming\Elex-tech\YAC\log\iSafeTray.log, , [3e0b7fbd5148b4821adabfe3d23002fe],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafembp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\bugreport.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\feedback.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iddmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iDesk.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iDskDllPatch.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iDskDllPatch64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ipcdl.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafe.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeadfv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeBugReport.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafetbv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeTHlp.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeTHlp64.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeVirusScanner.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iStart.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemclv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemgc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeMon.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeMon64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemoptv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemsmv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafemvsv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeNetFilter.sys, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeRKScanShell64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafesmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafesopt.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafesptv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafesv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libcurl.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libeay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\libpng.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\main, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcp110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\msvcr110.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ouilibx.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\sqlite3.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\sqlite3x64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\ssleay32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\uninstall.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\uninstall.inst, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\YACcleaner.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafechlp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeclc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeclcv.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\isafeclean.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlBoot.sys, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlCall64.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\ccc.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\config.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\customscan.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\dbucg.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\hyperscan.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\isafe.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\quickscan.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\scanfilter.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\ucg.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\cfg\updatedb.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\adb.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\bas.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\bts.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\bwd.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\cls.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\clx.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\eas.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\ess.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\fst.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\gcs.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\gcx.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\hs.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\mic.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\nlu.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\plx.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\rms.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\sta.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\stu.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\tbc.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\uis.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\was.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\data\ysm.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\cache\index.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\defs\bs.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\defs\sr.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\defs\vn.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\defs\ws.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\quarantine\index.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\engine\trustzone\index.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\font\segoeui.ttf, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\font\segoeuib.ttf, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\AdBlock_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\adwclean_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\bugreport.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\clean_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\clean_scanfilter_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\common_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\dsk_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\fblang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\iSafeRKScanShell.lang, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\iSafeSet_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\Lottery_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\NewVirusScan_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\new_clean_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\optimize_lang2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\PCClinicUI_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\plugin_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\SafeProtect_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\shell.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\softmgr_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\startup_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\taskhelper_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\ToolBox_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\tray2_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_appstore_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_desk_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_feedback_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_floaty_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_nodisturb_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_protect_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_startupassist_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\trayplugin_virus_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\lang\uninstall_lang.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\bugreport.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\bugreport.zip, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\ipcdl.log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\ipcproxy.log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeBS.log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeKrnlCall.log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeKrnlMonCall.log, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeSvc.LOG, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeSvc2.LOG, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeTaskHelper.LOG, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\log\iSafeTHlp64.LOG, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\edit_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\AdblockToggle.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set_hide.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set_hide_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set_show.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\adb_set_show_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\Add.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\Beta.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\Delete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\FilterDesc.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\FilterDesc_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\lock_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\LogDetail.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\LogDetail_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\opt_arrow_down.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\popup_menu_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\popup_menu_itemskin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\Resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\unlocked_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\WhiteList.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\image\default\WhiteList_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\layout\default\AdBlockView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\AdBlock\style\Style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\about_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\activity.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\activity_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\appstore_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\appstore_refresh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\btn_set.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\check_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\check_indeterminate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\check_uncheck.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\cm_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\combo_browser_dropdown_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\connecting_anim.gif, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\dbup_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\dbup_dlg_bk_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\dbup_dlg_onekey_up_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\dbup_dlg_reboot_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\head_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\head_indeteminate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\head_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_adblock.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_adw_clean.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_appstore.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_avira.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_deep_clean.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_exam.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_netmon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_optimize.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_protect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_recovery.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_softmgr.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_toolbox.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\icon_virusscan.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\if_block.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\if_prompt.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\if_question.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\if_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\language_selected_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\like.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\like_count.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\line1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\line2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\listctrlbtn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\menu_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\menu_bkg2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\menu_nation_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\msgbox_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\number_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\number_bg2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\pop_sys_button2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\pop_sys_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\progressbar_anim.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\progressbar_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\progressbar_image.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\language_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\menu_setting_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\recovery.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\startmenu_deepclean.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\setting.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\setting_img_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\slidebutton_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\small_dl.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\small_download.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\small_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\small_progress.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\small_progress_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\special_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\sub_toggle_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\sys_imglist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\tab_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\updatedlg_ok_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_cheking.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_chk_err.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_chk_ok.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_client_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_downlodaing.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_error.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_latest.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\update_server_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\wifi_logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\bk_bag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\bk_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\bk_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\btn_repair.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_adblock_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_back_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_cancel.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_do.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_number_0.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_health_number_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_health_number_pressed.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_health_plus_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_hover.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_hover_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_normal_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_pressed.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_number_pressed_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_ok_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_plus_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_rubbish_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_rubbish_icon_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_safe_protect_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_safe_protect_icon_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_scanning_mid.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_scanning_pic.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_scanning_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_softmgr_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_softmgr_icon_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_sys_opt_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_sys_opt_icon_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_tip_wnd_arrow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_tip_wnd_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_tip_wnd_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_type_btn_bottom_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_bn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_gb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_health_bn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_health_kn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_health_mn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_kb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_kn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_mb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\green_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\icon_big_home.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_result_health_number_hover.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],

FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\exam_unit_mn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\ignore_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\manual_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\manual_item.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\number_big_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\number_big_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\number_big_red2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\opt_arrow_down.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\opt_arrow_up.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\right_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\score_none.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\warning_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\warning_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\warning_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\warning_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\image\new\exam\yellow_wrong.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\aboutdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\dbupdatedlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\DemoApp.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\language_select.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\maindlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\msgbox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\slide_button_wnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\tipwnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\layout\new\updatedlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\app\style\style_new.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\crash_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\detail_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\error_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\input.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\reset_yac_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\send_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\smell_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\sorry_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\sucess_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\wait.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\waitting_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\image\default\res\wait_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\layout\default\detailwnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\layout\default\mainwnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\bugreport\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_quick_clean_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_advance_item_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_advance_item_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_adware_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_auto_clean_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_clean_smile_face.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_full_scan_virus_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_junk_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_list_header_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_plugin_can_delete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_plugin_can_disable.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_plugin_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_plugin_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_plugin_type_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_privacy_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_quickclean_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_registry_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_reg_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_rubbish_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_scan_check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_scan_detail_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_share_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_sysmenu_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\cl_trace_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\opt_new_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\opt_rightkeymenu_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\opt_sendto_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_button_open.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk3.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk4.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk5.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_button_bk6.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_box_select_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_default_image.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_eye_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_file_browser.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_path_edit.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_progress_animate.gif, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_pop_tipwnd_warnning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\clean_togbtn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\cl_combo_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\cl_down_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\cl_menu_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\cl_menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\image\default\clean_pop_res\cl_up_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default\NewCleanPFSettingDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default\NewCleanPopDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default\NewCleanView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default\ScanDetailDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\layout\default\Tipswnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\clean\style\clean_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\head_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox_close_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\arrow_down.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\arrow_up.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\check_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\check_indeterminate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\check_uncheck.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\close_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\color_blue_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\color_green_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\color_red_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\color_yellow_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\common_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\common_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\common_faq_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\common_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\common_tip_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\feedback_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\head_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\head_indeteminate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\if_block.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\if_prompt.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\if_question.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\if_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\min_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox2_button_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox2_button_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox2_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\msgbox_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\nation_icon_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\progressbar_anim.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\progressbar_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\progressbar_image.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\pvb_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\pvb_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\scanview_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\scan_check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\scan_complete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\scan_scanning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\scan_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\switch_button_off.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\switch_button_on.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\toggle_btn_pop_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\image\default\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\layout\msgbox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\layout\msgbox2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\common\style\common_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_file_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\close_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_add_file_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_add_file_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_btn_bk1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_btn_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_complete_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_ctrl_close_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_edit_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_file_ctrl_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_live_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_msgbox_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_msgbox_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_pay_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_problem_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_report_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_suggestion_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_tip_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_wait_anim.gif, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_warning_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\fb_yac_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\image\default\tab_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\layout\default\feedback_view.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\layout\default\mainwnd2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\layout\default\msgbox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\fbSkin\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg_list.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_3.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_4.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_5.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\desk_bkg\desk_bkg_default.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\foldericon\app.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\foldericon\file.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\foldericon\folder.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\foldericon\picture.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\add_list_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\add_list_til_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\app.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrange_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrow_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrow_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\btn_accelerate_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\button_delete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\button_selected.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\check_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\check_uncheck.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\cloud_flash.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\combo_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\combo_skin_op.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\customize.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\default_file.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\delete_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_all_import.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_bkg_default.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_btn_dkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_cmd_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_default_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_edit_light.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_fbar.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_arrow_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_arrow_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_gridctrl_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_icon_add_other.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_import_icon_list_add.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_loading.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_main_panel_edge.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_menu.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_more.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_pc.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_plus_import_bkg_a.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_plus_import_bkg_b.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_power_off.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_power_off_light.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_power_off_unlight.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\edit_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\edit_skin_op.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\file.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\focus_next.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\focus_prev.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\folder.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\icon_adblock_18-18.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\icon_adblock_22-22.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\deskbtnbk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_edit.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\desk_list_light.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\icon_arrange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_noad.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\new_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\pic-info.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\icon_Tip.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\idesk_pre_view.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\idesk_pre_view_a.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\import_scroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\improve_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\large_add_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\line-foot.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\list_scroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\logo_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menuitem_selbk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_accelerate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_help.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_import.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_open.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_quit.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_restore.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_sendto.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\menu_set.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\monitor_button_next.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\monitor_button_pre.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\mousechoose.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\mypc_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\new_icon_large.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\new_icon_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\new_icon_xp.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\normal_button_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\nothing.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\PageBtnBkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\PageBtnBkg_focus.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\PageNavigate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\pic-error.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\pic-question.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\pic-warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\picture.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\plus_action_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\search_box.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\search_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\search_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\selected.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\shutdown_button_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\shutdown_more_button_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\start_button_hover.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\start_panel_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\start_shutdown_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\switch_style.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_ctrl_panel.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_imglist.bmp, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_local_driver.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_lock.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_menu_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_net_connect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_recycle.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_restart.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\sys_sleep.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tips_button_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\title_bar.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\user_account_default.bmp, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\WIN7_bjSmall_X.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\WIN7_bjSmall_Y.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\WIN7_bj_X.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\WIN7_bj_Y.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\win8_desk_16_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\win8_desk_32_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\XP_bj_hover.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\XP_bj_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\arrange_arrow_b.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\arrange_arrow_l.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\arrange_arrow_r.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\arrange_arrow_t.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\btn_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\btn_green_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\check_uncheck.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\arrangedesktop\main_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_firstrun_bottom.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_firstrun_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_firstrun_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_firstrun_top.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_introduce_bottom.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_introduce_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_introduce_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\desk_tip_introduce_top.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_add_focus.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_arrow_bottom.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_arrow_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_arrow_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_arrow_right_large.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_browser_focus.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_focus_mask_point.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_focus_mask_rect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_item_drag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_guide_item_focus.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\image\default\tip\tip_point.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\add_shortcut_tip.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\arrange_desktop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\desk_bkg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\desk_taskbar_help_tip1.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\desk_taskbar_help_tip2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\main_import_icon.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\main_panel.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\main_setting.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\main_start.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\my_pc_menu.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\plus_import_icon.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\rename.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\layout\default\taskbar.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iDesk\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\about.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\adb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\bep.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\bth.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\dse.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\emailprotect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\fw.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\general.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\iSafeSet_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\jfm.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\lang.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\lang_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\image\default\nation_icon_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\layout\default\iSafeSetView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\iSafeSet\style\iSafeSet_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_indeterminate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_arrow_down.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_arrow_up.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_close_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_loading.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_minimum_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_num.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_num_percent.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_num_white.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_brush.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_complete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_dl_brush.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_dl_complete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_dl_start.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_install_brush.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_op_complete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_picture_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_point.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_select.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_speed_bar.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unable.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unit_b.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unit_gb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unit_kb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unit_mb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\new_clean_unselect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\image\newclean\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\layout\newclean\NewCleanDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\layout\newclean\tipsWnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\NewClean\style\new_clean_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_combo_bk_top.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\optimize_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\optimize_empty.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\optimize_restore_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_appsvc_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_arrow_down_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_arrow_up_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_boottime_nodata_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_combo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_combo_bk_bottom.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_combo_dropdown_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_startup_app_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_sysmenu_def_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_syssvc_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_taskschedule_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_type_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\opt_vert_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\pop_OptDlg_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\st_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\st_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\st_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\image\default\syssvc_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\layout\default\OptimizeView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\layout\default\optimize_popdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\optimize2\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plugin_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plug_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plug_norm.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plug_sec_level.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plug_should_del.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\image\default\plug_should_dis.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\layout\default\PluginView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\plugin\style\plugin_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\empty.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\locked_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\bing_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\blank_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\bo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\bp.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\bw.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\cdbh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\cdsh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\chph.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\chrome_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\cseh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\dp.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\edit_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\edit_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\edit_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\exam_dlg_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\exam_radio_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\exam_radio_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\firefix_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\fr.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\google_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\google_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\ie_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\iph.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\lastsession_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\lock_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\oh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\opera_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\opt.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\opt_vert_line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\popup_menu_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\popup_menu_itemskin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\pop_OptDlg_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\pop_toggle_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\pwb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\query_btn_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\SafeProtect_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\savebtn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\syssvc_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\to.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\tp.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\tw.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\unlocked_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\yac_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\yahoo_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\image\default\yahoo_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\layout\default\examdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\layout\default\SafeProtectView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\layout\default\SafeProtect_popdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\SafeProtect\style\SafeProtect_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_check_arrow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_close_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_collapse_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_expand_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_folder_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_opt_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_progbar_anim_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_progbar_indicator.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_progbar_indicator_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_search_box_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_search_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_software_def_ico_48.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_step_found.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_step_nofound.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_uninst_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_warning_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm2_whirling_pic.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_common_btn_bk1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_common_btn_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_menu_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_remain_ctrl_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_software_def_ico_20.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\sm_warning_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\image\default\softmgr_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default\SoftMgrView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default\SoftMgrView2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default\softmgr_guide.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default\softmgr_guide2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\layout\default\softmgr_result.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\softmgr\style\softmgr_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\btn_bg_1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\btn_bg_2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\smell_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\sorry_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\taskhlp_ac_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\taskhlp_ac_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\wait.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\image\default\res\wait_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\layout\default\autoclean_guide.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\layout\default\softuninstallwnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\TaskHelper\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default\Resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default\tb_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default\tb_default.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default\tb_download.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\image\default\tb_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\layout\default\ToolBoxView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\ToolBox\style\Style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\if_block.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\if_prompt.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\if_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\notify_bk_dang.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\notify_bk_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\notify_bk_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\pop_sys_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_bk_dang.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_bk_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_bk_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_btn_dang.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_btn_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\query_btn_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\traymenu_dlg_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\image\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\layout\pop\tippop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\tray2\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\adblock_guide_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\ad_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\pic_ad_off1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\pic_ad_off2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\pic_ad_on1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\pic_ad_on2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\rubbish.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\image\traymenu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\layout\adblockguide.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\layout\cleartrash.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\layout\strongUnist.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Feedback\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\testspeed_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\arrowdown_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\arrowup_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\clean_junk_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\default_program_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\download.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\download_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\floattray_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\flow_number.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\flow_unit.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\IPicon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\menu_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\pop_memory_btn_green_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\pop_memory_btn_yellow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\pop_network_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\speed_number.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\speed_unit.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\sys_imglist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\testspeed_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\testspeed_light.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\testspeed_light1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\test_speed_download.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\test_speed_upload.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\trayfloatarrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\trayfloatnetbtnico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\traymenu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\upload.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\upload_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\upload_gray_mark.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\yaclogo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\trayF_float_tips_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\trayF_float_tips_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_acc_circle_list_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_acc_circle_list_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_acc_circle_list_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_dec_circle_list_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_dec_circle_list_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_left_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_left_bk_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_left_bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_right_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_round_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_round_bk_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_round_bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_shadow_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_shadow_bk_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_shadow_bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_whirling_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_whirling_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_btn_close_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_menu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_net_down_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_net_flow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_net_up_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_numer.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_percent_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_percent_bk_orange.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_percent_bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_shadow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_shadow_sh_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_speed_test_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_rb.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_rb_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_rt.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_arrow_rt_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_close_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_go_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_wnd_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_tip_wnd_bk_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_rope_btn_bk_gl.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_rope_btn_bk_roulette.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_swing_anim_bk_gl.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_swing_anim_bk_roulette.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_throw_anim_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_throw_anim_round_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_dec_circle_list_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_anim_whirling_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\image\float\tray_float_shadow_sv_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\floatplugin.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\floattipwnd.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\floattipwnd_hide.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\swing_anim.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\throwdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\trayfloaty2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\trayfloatypop2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\trayfloatypop2_bottom.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\trayTaskbar.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\layout\trayTaskbar_wifi.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Floaty\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\foldericon\app.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\foldericon\file.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\foldericon\folder.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\foldericon\picture.ico, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\idesk_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\traymenu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\app.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\btn_cancel.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\btn_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\btn_green_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\file.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\folder.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\logo_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\main_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\picture.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\image\arrangedesktop\yac_logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\layout\arrange_desktop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\iDesk\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\layout\default\MsgCenterDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce\default\close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce\default\logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce\default\Msg_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\resouce\default\Resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\MsgCenter\style\Style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\pop_startup_slow_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\pop_startup_warning_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\traymenu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],

FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\traymenu_pop_cancel_btn2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\traymenu_pop_ico_query.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\tray_radio_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\image\tray_radio_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\layout\traymenupop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Nodisturb\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\bing_16_16.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\chrome_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_browser2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_browser_dropdown_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_pop_modify.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_pop_modify2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_pop_modify_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\combo_skin4.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\firefix_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\google_16_16.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\ie_16_16.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\ie_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\isafe_16.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\pop_startup_slow_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\pop_startup_warning_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\traymenu_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\traymenu_pop_cancel_btn2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\traymenu_pop_ico_query.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\tray_radio_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\tray_radio_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\image\yahoo_16_16.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\accesslink.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\blockblacklist.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\lock_guide.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\querymodify.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\querymodify2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\traydlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\layout\traymenupop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Protect\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\Location_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\new_left.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\new_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_assistant_blue_number.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_assistant_yellow_number.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startupass_comb_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startupass_vscoll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startup_fast_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startup_slow_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startup_warning_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_sys_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_sys_Setting.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_sys_star.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_anim_expand_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_anim_expand_bk_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_char_m.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_char_percent.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_char_s.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_close_btn_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_close_btn_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_combo_drop_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_combo_drop_bk_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_combo_skin_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_combo_skin_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_itemhover_bk_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_itemhover_bk_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_location_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_location_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_news_line_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_news_line_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_number.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_number_fuzzy.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_optimize_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_redpoint_large.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_redpoint_middle.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_redpoint_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_late_night_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_late_night_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_morning_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_morning_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_nightfall_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_nightfall_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_noon_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_vscoll_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_vscoll_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_cloudy_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_cloudy_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_icon_large.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_icon_small.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_line_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_line_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_rain_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\pop_startup_nomall_button.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_time_noon_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_rain_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_snow_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_snow_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_thunder_blue.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_weather_thunder_yellow.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\sa_yac_logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\weather_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\image\yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout\daily_news.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout\startup_assist.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout\startup_assist_2.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout\startup_assist_3.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\layout\startup_assist_weather.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\StartupAssist\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\point.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\Anti_Malware.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\dtk_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\dtk_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\green1_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\green_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_safe_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_safe_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_scan.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unknow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unkown_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unkown_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_clear_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_clear_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_clear_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\pop_dp_unsafe_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\vip_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\image\vip_dlg_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\detectbrowserriskpop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\detectriskpop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\downloadprotect.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\outdatepop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\premiumuserpop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\PrivilegeTerminateDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\updatevirussuccesspop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\layout\virusdboutofdatepop.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\trayplugin\Virus\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\exam_tip_wnd_arrow_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\inst_cover_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_func_up.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\av_authority_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\combo_list.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\custom_check.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\custom_uncheck.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\dl_inst_antymal_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\dl_inst_clean_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\dl_inst_optimize_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\dl_inst_protect_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\exam_tip_wnd_bk2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\ico_app.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\ico_face.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\ico_upgrade.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\install_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\install_combo_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\install_logo.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\install_prog_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\install_prog_meter.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\open_dir.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\popup_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\resource.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\soft_cof_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\soft_remove_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_3.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_4.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_5.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_6.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninstall_pic_7.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_acc.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_btn_bg1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_btn_bg2.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_clean.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_complete.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_cry.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_func1.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_func3.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_func_intr.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_input.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_progress.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_prog_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_protect.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\uninst_spliter.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\upgrade_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\upgrade_prog_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\upgrade_prog_meter.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\vscroll.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\image\yac_side_ico.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout\cover.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout\install.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout\uninstallpro.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout\uninstall_logo_fade.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\layout\upgrade.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\uninstall\style\style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\avangate.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\avangateflag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\button_blue.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\button_buy.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\button_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\button_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\buy_flag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\centili.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\chooseoption_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\chooseoption_close.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\cseh.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\edit_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\free_flag_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\general_buy_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\green1_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\green_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\guarantee.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoBW.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoBW_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoDP_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoRS.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoRS_gray.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\main_item_status.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\mobileflag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\paypal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\paypaldetail.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\paypalflag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\pay_cancel.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\premium_button_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\premium_flag_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\radio_checked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\radio_unchecked.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\red_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\result_danger.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\result_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\risk_item_see_about_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\skrill.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\trail_flag_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_SetDlg_EditSkin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_Tab_Vert_Line.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_certification_list_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_common_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_custom_scan.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_custom_scan_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_custom_scan_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_delete_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_expdlg_collapse_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_expdlg_expand_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\close_message_box_warning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\icoDP.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\point.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\skrillflag.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_SetDlg_Cancel_BTN_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\Virus_feature.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\Virus_feature_right.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hover_btn_iconlist.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hover_tip_arrow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hover_tip_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hover_tip_iconlist.jpg, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hyper_scan.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hyper_scan_d.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hyper_scan_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_hyper_scan_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_menu_bkg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_menu_item_over.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_normal.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_quick_scan.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_quick_scan_green.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_quick_scan_red.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virusopt_btn_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virusopt_but_bg.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_Btn_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_Loading.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_OptDlg_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_res.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\VirusScan_SetDlg_BG.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_restore_btn.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_scan_safe.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_scan_scaning.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_scan_virus.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_setting_icon.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_task_item_combo_skin.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_task_item_edit_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_task_item_save_btn_bk.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_update_db.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_update_db_out.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\virus_yellow.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\wait.gif, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\image\default\yellow_bk_new.png, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\ChooseOptionMessageBox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\CloseMessageBox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\explorer_folder_dlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\FinishScanFirstMessageBox.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\InputEmailDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\TrialFeatureDlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\virushovertip.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\VirusScanFeatureView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\VirusScanView.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\virusscan_popdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\layout\default\virusscan_settingdlg.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\skin2\VirusScan\style\VirusScan_style.xml, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fupd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\antirk.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\common.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\ctools.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\decexp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\emlib.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\falgorit.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fddsdb.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fddslog.txt, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fgui.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filau.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filcmn.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filcpt.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filppi.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filpps.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filup.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filup.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filuplog.txt, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filvss.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filvss.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\fsrexc.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\iSafeSvc2.exe, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\leave.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\lsf.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\mca.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\message.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\psmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\quarantine.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\tsc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\twsdk.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\twsupd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\twsupd.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unacev2.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unchm.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unemb.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unmisc.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unrar.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unsevzip.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\unzip32.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\vfst.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\w32tools.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\zipexp.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\zlib1.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\base0000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\base0001.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\catalog.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0001.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0002.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0003.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0004.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0005.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0006.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0007.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0008.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0009.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0010.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0011.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0012.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0013.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0014.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0015.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0017.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0018.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0019.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0020.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0021.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0022.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0023.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0024.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0025.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0026.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0027.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0028.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0029.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0030.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0031.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0032.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0033.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0034.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0035.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0037.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0038.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0039.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0040.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0041.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0042.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0043.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0044.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0045.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0046.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0047.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0048.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0049.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0050.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0051.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0052.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0053.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0054.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0055.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0057.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0058.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0059.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0060.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0061.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0062.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0063.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0064.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0065.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0066.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0067.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0068.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0069.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0070.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0071.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0072.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0073.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0074.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0075.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0077.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0078.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0079.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0080.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0081.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0082.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0083.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0084.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0085.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0086.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0087.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0088.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0089.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0090.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0091.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0092.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0093.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0094.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0095.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0097.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0098.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0099.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0100.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0101.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0102.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0103.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0104.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0105.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0106.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0107.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0108.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0109.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0110.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0111.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0112.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0113.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0114.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0115.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0016.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0036.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0056.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0076.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0096.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0116.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0136.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0156.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0176.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0196.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0216.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0236.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0256.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0276.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0117.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0118.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0119.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0120.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0121.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0122.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0123.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0124.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0125.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0126.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0127.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0128.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0129.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0130.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0131.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0132.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0133.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0134.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0135.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0137.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0138.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0139.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0140.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0141.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0142.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0143.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0144.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0145.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0146.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0147.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0148.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0149.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0150.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0151.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0152.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0153.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0154.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0155.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0157.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0158.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0159.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0160.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0161.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0162.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0163.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0164.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0165.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0166.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0167.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0168.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0169.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0170.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0171.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0172.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0173.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0174.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0175.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0177.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0178.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0179.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0180.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0181.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0182.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0183.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0184.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0185.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0186.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0187.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0188.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0189.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0190.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0191.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0192.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0193.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0194.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0195.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0197.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0198.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0199.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0200.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0201.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0202.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0203.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0204.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0205.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0206.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0207.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0208.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0209.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0210.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0211.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0212.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0213.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0214.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0215.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0217.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0218.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0219.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0220.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0221.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0222.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0223.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0224.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0225.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0226.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0227.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0228.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0229.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0230.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0231.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0232.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0233.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0234.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0235.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0237.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0238.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0239.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0240.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0241.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0242.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0243.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0244.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0245.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0246.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0247.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0248.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0249.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0250.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0251.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0252.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0253.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0254.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0255.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0257.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0258.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0259.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0260.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0261.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0262.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0263.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0264.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0265.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0266.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0267.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0268.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0269.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0270.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0271.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0272.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0273.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0274.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0275.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0277.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0278.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0279.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0280.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0281.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0282.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0283.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0284.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0285.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0286.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0287.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0288.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0289.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0290.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0291.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0292.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0293.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0294.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0295.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0296.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0297.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\defs\gen0298.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\figs000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fils000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fols000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwgs000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls000.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls001.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls002.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls003.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls004.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls005.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls006.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls007.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls008.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls009.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls010.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls011.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\filwls\fwls012.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugins\filavutd.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\plugins\virut.tpl, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\quarantine\catalog.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\tws\x64\psmgr.dll, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine0\upcfg.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine1\bs.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine1\sr.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine1\vn.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\Engine1\ws.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\update\temp\upcfg.ini, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\co.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\sie.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\softcache2.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\srd.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\svc2.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
FraudTool.YAC, C:\Program Files (x86)\Elex-tech\YAC\user\svc2_com.dat, , [ba8ffe3eaaefac8ab93ccad819e9c937],
PUP.Optional.YourSites123.ShrtCln, C:\Users\Pokladna2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Dobré: ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Špatné: ("session":{"restore_on_startup":4,"startup_urls":["http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS"]},"software_reporter":{"prompt_seed":"20151015","prompt_version":"4.32.1"}}), ,[a8a185b74b4e171f38b49d4ef50fb14f]
PUP.Optional.YourSites123.ShrtCln, C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.newtab.url", "http://www.yoursites123.com/newtab/?typ ... X61F8F5KNS");), ,[fd4c89b30d8c88aeaa6bb233ab59ca36]
PUP.Optional.YourSites123.ShrtCln, C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default\prefs.js, Dobré: (), Špatné: (yoursites123.com), ,[16330c309603eb4bf4172dbf0202c33d]

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Všechny nálezy smažte.

Dobrý den. Radeji jen upozornuji, že dany program jsem si stahoval ve free verzi. Kdyz jsem po smazani(nevim zda se nejednalo nakonec spise o karantenu, jelikoz po oznaceni smazat se vse vyresilo behem nekolika sekund) nasledne zapinal priste notebook, tak se 3x pri zapinani sekla musel jsem jej zapnout az na poctvrte. Zaroven treba outlooku pripnutemu na panelu zmizela ikona (vypada jen jako bily list) a pri poksuu o otevreni se zobrazi - Tuto polozku nelze otevrit. Pravdepodobne byla presunuta, prejmenovana nebo odstranena. Chcete tuto polozku odebrat? Kdz program najdu primo v pc, tak bezi bez problemu. To same i u icq, dale jsem mel v panelu jeste mozillu, ale ta zustala bez problemu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pokladna2 at 2016-01-23 19:15:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 8 GB (3%) free of 282 GB
Total RAM: 3006 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:15:22, on 23.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\windows\sysWow64\SearchProtocolHost.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
C:\Program Files\trend micro\Pokladna2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/?type=hp&ts ... X61F8F5KNS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Nike+ Connect] "C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - (no file)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16026 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
taskeng.exe {93D7449C-AF7A-421A-B622-AABB9BE45E19}
"taskhost.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
szndesktop.exe default start
"C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\windows\system32\conhost.exe "4936716961384108898-1063065532-1884158073-237368258496009217-17463593891705388225
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 4312
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
/tsr /qnote_closed
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\alg.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\igfxext.exe -Embedding
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Connection Manager</Title><Text>Wi-Fi: Připojeno
Bluetooth®: Zapnuto
Síť LAN: Nepřipojeno</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</IconPath><ID>1</ID><Path>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</Path><Parameters>OpenMainWindow</Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\sysWow64\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10013_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10013 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10014_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1490178772-4250543190-1267179993-10014 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Users\Pokladna2\Desktop\ost\Ost 2\Programy\RSITx64.exe"
taskeng.exe {2E2A14B6-6407-42D4-98B4-5443CD9CDD47}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /L Analysis
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pokladna2\AppData\Roaming\Mozilla\Firefox\Profiles\ijwybfu5.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMioCyclo100PlugIn.dll
npMioPlugIn.dll
nppdf32.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-22 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-22 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2000-01-01 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2000-01-01 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2000-01-01 416024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Pokladna2\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\Pokladna2\AppData\Roaming\ICQM\icq.exe [2015-06-09 36705800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nike+ Connect]
C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Nike+ Connect"=C:\Program Files (x86)\Nike\Nike+ Connect\Nike+ Connect daemon.exe [2015-10-10 71680]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]

C:\Users\Pokladna2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2000-01-01 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-22 14:54:07 ----D---- C:\Users\Pokladna2\AppData\Roaming\Sun
2016-01-21 22:18:41 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2016-01-21 22:18:12 ----D---- C:\ProgramData\Malwarebytes
2016-01-21 22:18:12 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-21 22:18:12 ----A---- C:\windows\system32\drivers\mwac.sys
2016-01-21 22:18:12 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2016-01-21 22:18:12 ----A---- C:\windows\system32\drivers\mbam.sys
2016-01-21 12:43:52 ----D---- C:\rsit
2016-01-18 22:46:58 ----D---- C:\Users\Pokladna2\AppData\Roaming\Elex-tech
2016-01-12 09:29:49 ----D---- C:\windows\system32\log
2016-01-12 09:29:32 ----D---- C:\Program Files (x86)\Elex-tech
2016-01-07 09:36:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-12-28 17:30:00 ----A---- C:\windows\system32\MetaViewer64.dll
2015-12-26 22:13:42 ----D---- C:\Program Files (x86)\Warcraft III - Gold Edition
2015-12-24 14:07:42 ----D---- C:\Users\Pokladna2\AppData\Roaming\uplay

======List of files/folders modified in the last 1 month======

2016-01-23 19:15:21 ----D---- C:\Program Files\trend micro
2016-01-23 19:10:45 ----D---- C:\Users\Pokladna2\AppData\Roaming\Seznam.cz
2016-01-23 19:09:53 ----D---- C:\windows\Temp
2016-01-23 19:09:02 ----A---- C:\windows\SYSWOW64\log.txt
2016-01-23 19:02:53 ----D---- C:\windows\system32\config
2016-01-23 19:00:38 ----D---- C:\windows\system32\drivers
2016-01-23 18:47:13 ----D---- C:\Users\Pokladna2\AppData\Roaming\vlc
2016-01-23 18:17:26 ----D---- C:\windows\Resources
2016-01-23 16:47:18 ----SHD---- C:\System Volume Information
2016-01-22 20:12:12 ----D---- C:\windows\System32
2016-01-22 20:12:12 ----D---- C:\windows\inf
2016-01-22 20:12:12 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-22 15:00:27 ----D---- C:\ProgramData\Oracle
2016-01-22 14:54:27 ----SHD---- C:\windows\Installer
2016-01-22 14:54:26 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 14:54:15 ----D---- C:\windows\Prefetch
2016-01-22 14:53:01 ----D---- C:\windows\SysWOW64
2016-01-22 14:52:20 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 14:52:04 ----D---- C:\windows\system32\Tasks
2016-01-22 14:51:47 ----D---- C:\Program Files (x86)\Java
2016-01-22 09:15:24 ----D---- C:\Windows
2016-01-21 22:18:12 ----HD---- C:\ProgramData
2016-01-21 22:18:12 ----D---- C:\Program Files (x86)
2016-01-19 21:26:40 ----D---- C:\windows\Tasks
2016-01-19 20:58:57 ----D---- C:\Users\Pokladna2\AppData\Roaming\Skype
2016-01-19 20:06:14 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-18 22:32:06 ----D---- C:\AdwCleaner
2016-01-18 12:45:19 ----D---- C:\windows\system32\catroot2
2016-01-15 13:07:31 ----D---- C:\Users\Pokladna2\AppData\Roaming\TeamViewer
2016-01-14 13:43:33 ----RD---- C:\Program Files
2016-01-08 20:10:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-05 19:04:02 ----D---- C:\Program Files (x86)\stepmania.com
2015-12-28 17:30:23 ----D---- C:\Program Files\HighSky Trader 5
2015-12-28 17:30:08 ----D---- C:\Users\Pokladna2\AppData\Roaming\MetaQuotes
2015-12-26 21:49:46 ----D---- C:\Users\Pokladna2\AppData\Roaming\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2014-08-28 386680]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110909.001\BHDrvx64.sys [2011-09-09 1152632]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-09-09 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110922.030\IDSvia64.sys [2011-09-08 488568]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-09-09 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2000-01-01 12310112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2000-01-01 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-01-12 2611704]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 tap0901;TAP-Win32 Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2011-07-01 31232]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2008-09-26 115328]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\windows\system32\DRIVERS\iSafeKrnlBoot.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2016-01-23 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 mvusbews;USB EWS Device; C:\windows\System32\Drivers\mvusbews.sys [2010-10-15 20480]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\ENG64.SYS [2011-09-09 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110922.024\EX64.SYS [2011-09-09 2048632]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbser;STM Virtual COM Port; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-09 126520]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-19 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-02-28 347200]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-12-16 265808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-07-01 14848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-10 117392]

-----------------EOF-----------------