Pomalé načítání

Zpráva

Attistar · #16 Příspěvek od **Attistar** » 20 črc 2014 22:59

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Disabled (Startup Manager)]
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2014.03.04 11:19:52 | 003,696,912 | ---- | M] (Disc Soft Ltd)
"Raptr" = C:\PROGRA~1\Raptr\raptrstub.exe --startup -- [2014.06.24 22:00:54 | 000,055,360 | ---- | M] (Raptr, Inc)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.07.20 22:21:43 | 000,000,512 | ---- | M] () MD5=A8148FF517C46A81760BDFC230CC4DBF -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2014.03.06 18:19:41 | 680,525,824 | ---- | M] () -- \Users\uživatel\Desktop\ophcrack-vista-livecd-3.6.0.iso
[2014.03.06 20:26:16 | 680,525,824 | ---- | M] () -- \Users\uživatel\Downloads\ophcrack-vista-livecd-3.6.0.iso
[2014.03.06 16:49:38 | 005,877,648 | ---- | M] () -- \Users\uživatel\Downloads\ophcrack-win32-installer-3.6.0.exe

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2014.01.23 15:54:38 | 000,268,440 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013.03.09 09:17:04 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.02.03 05:32:08 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2009.02.19 00:02:00 | 000,049,152 | ---- | M] () -- \Program Files\GOG.com\Duke Nukem - Manhattan Project\sys\loaders.dll
[2014.01.06 20:47:02 | 000,000,702 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_advoptions.fen
[2014.01.06 20:47:02 | 000,000,790 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_debug.fen
[2014.01.06 20:47:02 | 000,000,723 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_download.fen
[2014.01.06 20:47:02 | 000,000,694 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_file_errors.fen
[2014.01.06 20:47:04 | 000,000,634 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_manage_devices.fen
[2014.01.06 20:47:04 | 000,002,283 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_onboard.fen
[2014.01.06 20:47:04 | 000,001,417 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_options.fen
[2014.01.06 20:47:04 | 000,001,330 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72.png
[2014.01.06 20:47:04 | 000,002,541 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72x2.png
[2014.01.06 20:47:04 | 000,002,109 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_prefs.fen
[2014.01.06 20:47:04 | 000,000,956 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error1.fen
[2014.01.06 20:47:04 | 000,001,080 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error2.fen
[2014.01.06 20:47:04 | 000,001,139 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error_estimate.fen
[2014.01.06 20:47:04 | 000,002,181 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_welcome.fen
[2012.06.26 13:36:20 | 000,002,560 | ---- | M] () -- \Program Files\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2010.11.23 00:57:34 | 000,009,216 | ---- | M] () -- \Program Files\Raptr\_win32sysloader.pyd
[2009.07.20 12:52:26 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2009.07.20 12:52:26 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2014.06.03 16:26:54 | 000,003,208 | ---- | M] () -- \Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\skin\ajax-loader.gif
[2014.06.26 09:46:50 | 000,009,418 | ---- | M] () -- \Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.7_0\img\gifloader.gif
[2014.07.20 23:00:56 | 000,890,744 | ---- | M] () -- \Users\Matěj\Desktop\amddriverdownloader.exe
[2014.01.06 11:52:30 | 003,244,032 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\gpuploader_i18n.dll
[2014.01.06 11:47:04 | 000,000,702 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_advoptions.fen
[2014.01.06 11:47:04 | 000,000,790 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_debug.fen
[2014.01.06 11:47:04 | 000,000,723 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_download.fen
[2014.01.06 11:47:04 | 000,000,694 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_file_errors.fen
[2014.01.06 11:47:06 | 000,171,541 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_icons.psd
[2014.01.06 11:47:06 | 000,000,634 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_manage_devices.fen
[2014.01.06 11:47:06 | 000,002,283 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_onboard.fen
[2014.01.06 11:47:06 | 000,001,417 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_options.fen
[2014.01.06 11:47:06 | 000,002,109 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_prefs.fen
[2014.01.06 11:47:06 | 000,000,956 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error1.fen
[2014.01.06 11:47:06 | 000,001,080 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error2.fen
[2014.01.06 11:47:06 | 000,001,139 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_quota_error_estimate.fen
[2014.01.06 11:47:06 | 000,002,181 | ---- | M] () -- \Users\uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\runtime\gpuploader_welcome.fen
[2014.02.18 18:46:42 | 000,072,638 | ---- | M] () -- \Users\uživatel\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.02.18 18:46:42 | 000,003,032 | ---- | M] () -- \Users\uživatel\AppData\Local\Skype\Apps\login\images\loader.png
[2014.02.18 18:46:42 | 000,006,012 | ---- | M] () -- \Users\uživatel\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.02.18 18:46:42 | 000,021,956 | ---- | M] () -- \Users\uživatel\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.02.18 18:46:42 | 000,009,772 | ---- | M] () -- \Users\uživatel\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014.01.28 21:31:43 | 000,071,894 | R--- | M] () -- \Users\uživatel\AppData\Roaming\Microsoft\Installer\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}\GPUploader.exe
[2010.03.24 21:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109D30000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2010.03.24 21:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004109D30000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012.10.01 20:30:04 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109B10000000000000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012.10.01 20:30:04 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109B10000000000000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2013.03.09 09:17:04 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109B10000000000000000F01FEC\15.0.4569\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2014.04.12 04:03:37 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2012.01.11 16:28:45 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_359e67f47490d51d.manifest
[2012.01.11 16:28:45 | 000,034,688 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_359e67f47490d51d_winload.exe.mui_3bc5b827
[2012.01.11 16:28:45 | 000,030,592 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_359e67f47490d51d_winresume.exe.mui_ff8b5358
[2012.01.11 16:28:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21675_none_5d77e1aae4365a1a.manifest
[2012.01.11 16:28:47 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21675_none_5d77e1aae4365a1a_winload.exe_75835076
[2012.01.11 16:28:48 | 000,443,744 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21675_none_5d77e1aae4365a1a_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2011.04.12 03:36:26 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2012.01.11 16:28:26 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_359e67f47490d51d.manifest
[2010.11.20 23:23:54 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2012.01.11 16:28:25 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21675_none_5d77e1aae4365a1a.manifest
[2012.01.11 16:28:26 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_43913ee0afad8a79.manifest
[2012.01.11 16:28:26 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_da-dk_e0cb1f07a5f38678.manifest
[2012.01.11 16:28:26 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_el-gr_868ce1d696df43a0.manifest
[2012.01.11 16:28:26 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_fi-fi_25cdebcd8be8caa6.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_hu-hu_70dadd676e00bdfa.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_ko-kr_5921af28465ead4d.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_nb-no_41b4305d1e83d909.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pl-pl_862fd61d04d25092.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pt-br_8883c0c1035be476.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pt-pt_8965902d02cb5452.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_ru-ru_d008a1f0e7ace27e.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_sv-se_6c038c65ded5ecd9.manifest
[2012.01.11 16:28:27 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_tr-tr_1510d6accd91eeca.manifest
[2012.01.11 16:28:28 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-cn_e66df4aa7dc9c0e9.manifest
[2012.01.11 16:28:28 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-hk_e518ed387ea53379.manifest
[2012.01.11 16:28:28 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-tw_ea6a32007b3a9d59.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.01.11 18:47:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.23 06:36:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.23 06:29:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.01.11 16:44:33 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21831_none_0d2a59c2f342923c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.01.11 18:47:38 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21855_none_0d18bb12f34f2f7a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.23 06:36:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.23 06:29:14 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.02.23 06:41:29 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 12:35:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2013.02.23 06:35:40 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014.07.20 18:44:47 | 002,120,704 | ---- | M] () -- \Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage
[2014.07.20 18:44:47 | 000,005,672 | ---- | M] () -- \Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage-journal
[2014.01.29 01:21:48 | 000,000,024 | ---- | M] () -- \Users\uživatel\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2011.04.12 03:36:53 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.01.11 18:17:08 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.13 07:31:17 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\90e320b6ff84382fe16b0991b2efb991\System.Runtime.Serialization.ni.dll
[2014.02.13 07:21:40 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\cadf4ad3f9671ad31ebc3388bce3fc53\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.01.28 22:08:01 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e948dee4d1310316a37599fda265de90\System.Runtime.Serialization.ni.dll
[2014.02.27 22:19:19 | 000,309,760 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.27 22:19:19 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.02.27 22:19:49 | 002,825,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
[2014.02.27 22:19:49 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll.aux
[2014.02.28 08:27:13 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll
[2014.02.28 08:27:13 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll.aux
[2013.09.11 23:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 23:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013.09.11 22:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 23:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013.09.11 23:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.09.11 22:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013.09.11 22:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 03:36:49 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.09.11 22:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.09.11 22:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013.09.11 22:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 23:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 23:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2011.04.12 03:36:50 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2011.04.12 03:36:55 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2011.04.12 03:37:09 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010.11.20 23:24:56 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2013.02.23 06:35:36 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.01.11 18:16:59 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.21812_none_8fb1a8a08e81acb2.manifest
[2012.01.11 19:42:35 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.21864_none_8fb67c828e7d5ea7.manifest
[2013.02.23 06:35:36 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2011.04.12 03:36:33 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2013.02.23 06:35:36 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.01.11 18:16:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.21812_cs-cz_1d5cef599dcdcccc.manifest
[2012.01.11 19:42:30 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.21864_cs-cz_1d61c33b9dc97ec1.manifest
[2013.02.23 06:35:36 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2010.11.20 23:24:56 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2013.02.23 06:35:36 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.01.11 18:16:59 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.21812_none_bff4de3ab628ade5.manifest
[2012.01.11 19:42:35 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.21864_none_bff9b21cb6245fda.manifest
[2013.02.23 06:35:36 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009.07.14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010.11.20 23:24:56 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2013.02.23 06:35:36 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.01.11 18:16:59 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.21812_none_c4cf8a07f6ff4827.manifest
[2012.01.11 19:42:33 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.21864_none_c4d45de9f6fafa1c.manifest
[2013.02.23 06:35:36 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 03:36:53 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.01.11 18:17:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.21812_none_8fb1a8a08e81acb2\System.Runtime.Serialization.dll
[2012.01.11 19:42:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.21864_none_8fb67c828e7d5ea7\System.Runtime.Serialization.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2012.01.11 18:17:08 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2012.01.11 18:17:08 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.21812_cs-cz_1d5cef599dcdcccc\System.RunTime.Serialization.Resources.dll
[2012.01.11 18:17:08 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.21864_cs-cz_1d61c33b9dc97ec1\System.RunTime.Serialization.Resources.dll
[2012.01.11 18:17:08 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.01.11 18:17:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.21812_none_bff4de3ab628ade5\System.Runtime.Serialization.dll
[2012.01.11 19:42:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.21864_none_bff9b21cb6245fda\System.Runtime.Serialization.dll
[2013.02.23 06:35:41 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2011.04.12 03:36:49 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2011.04.12 03:36:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2011.04.12 03:36:55 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2013.02.23 06:35:40 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.01.11 18:17:08 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.21812_none_c4cf8a07f6ff4827\System.Runtime.Serialization.dll
[2012.01.11 19:42:41 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.21864_none_c4d45de9f6fafa1c\System.Runtime.Serialization.dll
[2013.02.23 06:35:40 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 6392 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4

< End of report >

Attistar · #17 Příspěvek od **Attistar** » 20 črc 2014 22:59

OTL Extras logfile created on: 20.7.2014 22:14:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Matěj\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1013,42 Mb Total Physical Memory | 216,84 Mb Available Physical Memory | 21,40% Memory free
1,99 Gb Paging File | 0,74 Gb Available in Paging File | 37,23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 186,58 Gb Free Space | 62,61% Space Free | Partition Type: NTFS

Computer Name: UŽIVATEL-PC | User Name: Matěj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2962489488-1740152995-2069433674-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\Applian Technologies\FLV and Media Player\amp.exe" --started-from-file --playlist-enqueue "%1" (Applian Technologies Inc)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\Applian Technologies\FLV and Media Player\amp.exe" --started-from-file --no-playlist-enqueue "%1" (Applian Technologies Inc)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0689F594-5872-4766-82D9-4EB0D75B3FCE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{110C01C1-9790-44C0-A1AD-62FBDF286480}" = lport=10243 | protocol=6 | dir=in | app=system |
"{118B367B-5D92-4D98-83E9-C8A5E50D0EEF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{12B8DC26-B56B-45E5-8DB3-B0E8B991610A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{254FD37A-7352-403F-B460-490CCE6EBA37}" = lport=137 | protocol=17 | dir=in | app=system |
"{2816E786-DD24-4D2A-AD4C-B7ABD436E9CA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{2FCB5F0B-6834-419F-811F-4A610204E5ED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4309297C-5F62-4F3F-B529-44881342C10B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{59D2AE2C-D626-43D7-9784-1525B1EB1FFE}" = lport=138 | protocol=17 | dir=in | app=system |
"{5C39D98C-DDF4-40BD-9AC3-09CA3E674088}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{636311BA-E046-46A4-B3C6-6153561C8C5B}" = rport=138 | protocol=17 | dir=out | app=system |
"{66C04C23-CD95-4CEB-A151-87526257F2C0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{6BCEDD38-B0A6-479D-AFE1-CA003BFD0C60}" = rport=445 | protocol=6 | dir=out | app=system |
"{78FC7A32-5A50-417E-BD6A-76D3CFCC1230}" = rport=137 | protocol=17 | dir=out | app=system |
"{90FACBFA-CC60-4DF9-ACAB-9F5E4FD680A4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{95D9EE2A-27D2-4439-8751-C79A6958FEA8}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A15893C2-D474-421A-AEB7-5D10307DB28F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A4BC388A-D9BB-4D0A-9699-5E63433F6518}" = lport=139 | protocol=6 | dir=in | app=system |
"{A53A3985-D284-4D93-84AB-B1563546D5FB}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B0EAF464-3BAF-4A5A-AF96-AAFA8360ED6C}" = rport=139 | protocol=6 | dir=out | app=system |
"{B5C5451B-E9F4-4671-9A57-C5238397F290}" = rport=10243 | protocol=6 | dir=out | app=system |
"{B8B977F9-79FC-4894-8551-B6229090A921}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{DC54885E-5782-4D7E-96B9-4D08297E6144}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F0CE4A81-3ABA-4E90-8B30-4D2BE2A009DA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{F739D7E3-5736-4D18-A9CE-907CBA7F3F66}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05375C6D-E5DF-490F-9AD3-B0B45770FF30}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{07010151-E2A8-4113-9870-D1D4CC79E56B}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{0832C6F3-E98F-4A96-B064-F6A8A6C590AD}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr.exe |
"{21AC93F5-F1E3-4301-8722-65DCABCE50F2}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{284326AA-7C95-48EB-B186-5C2AD054CAA2}" = protocol=6 | dir=in | app=c:\windows\twain_32\samsung\scanmgr.exe |
"{360DD4F7-FF11-4BC9-AF30-77B1253097CA}" = protocol=17 | dir=in | app=c:\windows\twain_32\samsung\scx4x24\sscan2io.exe |
"{39E20718-5903-4D78-9ECE-01193250ABC5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{43EB74FA-88D9-4812-A715-BB83AFA074DD}" = protocol=6 | dir=out | app=system |
"{5211F095-F2FF-405E-9D35-7753D037E76F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{556EF77D-EAA4-43C0-B12B-E84CE5F5B848}" = protocol=17 | dir=in | app=c:\users\matěj\appdata\roaming\bittorrent\bittorrent.exe |
"{61A87A0A-0D6B-4D6A-8B65-ED7164AB2909}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{68446091-05EC-44F9-93A7-638FABDB2FD0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{69203365-E1ED-4DA5-9F1F-BC6967EC4BCE}" = protocol=17 | dir=in | app=c:\windows\twain_32\samsung\scanmgr.exe |
"{69BAD64C-55EE-44BF-A16A-CAA65111CD1E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7DA73BF4-C8BB-4BF1-B3C2-B3D616EDE0D0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8649B475-572D-4F3C-8967-148691B1FC41}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8BEECBFD-3531-44C1-8F88-CF2FDAD3C8FA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{8FE1906C-CAA5-40F6-A341-71D8FDFB00BF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{A15391D5-722D-4A43-8121-3BBBC0092222}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BCD20CBB-715A-40A0-8F00-F01639BEA6D0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BFC08937-8687-4E88-B79D-6F736D533A65}" = protocol=6 | dir=in | app=c:\windows\twain_32\samsung\scx4x24\sscan2io.exe |
"{C54ED2DE-6BC1-4BA4-BF6B-A57876170420}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{CC46139C-C3B4-4FD8-8198-DDE0107D10D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CF76755F-A6BD-4E07-9591-AEA85DDDA556}" = protocol=6 | dir=in | app=c:\users\matěj\appdata\roaming\bittorrent\bittorrent.exe |
"{DAD8358F-BEFF-4234-8297-9AE86D868C83}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{DD0280D7-4E0D-4F5C-97F3-543FFCC10A11}" = protocol=6 | dir=in | app=c:\windows\twain_32\samsung\scx4x24\scan2pc.exe |
"{E0C26CD4-1D8A-4705-8F1A-82520320AC96}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{EBE4D4C2-68AF-4EA3-9D66-4DBC031CDE15}" = protocol=17 | dir=in | app=c:\windows\twain_32\samsung\scx4x24\scan2pc.exe |
"{F8489BD1-ED11-4682-AED8-BDE2BAA2602E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FA3675C4-F110-466E-BB14-686CDC589597}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr.exe |
"{FC1F9593-A486-477C-9F32-DC1EE8038E8B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00F14E5B-E07A-2A1E-6788-580773CE1486}" = CCC Help English
"{0A036215-0A8D-6FBE-7EA3-7AED4F9E162A}" = CCC Help Turkish
"{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}" = Microsoft .NET Framework 4.5.1 (CSY)
"{15A05AAA-37E7-D516-5BE9-C960C2170403}" = CCC Help Czech
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1" = Euro Truck Simulator 2
"{1EDC89D9-8EA3-41DA-A545-672CA95FE3E7}" = Arabic Fonetic Keyboard (CZ) 0.9.1
"{21E9850E-58C2-FA88-D5AD-B64D253B8F82}" = CCC Help Thai
"{25A7270E-1B63-DFD1-ACBC-88852A305398}" = CCC Help Chinese Traditional
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 65
"{28ABE740-47F3-441B-9437-852F6A64EFF8}" = Lenovo_Wireless_Driver
"{2E69E784-F84A-9A18-7D8E-4EB8504EEE1E}" = CCC Help Danish
"{362614E4-9ABB-E7A7-CDDC-239AB168060A}" = CCC Help Japanese
"{36A345C9-0691-45A1-AEEF-29ECEC8B5014}" = Microsoft Security Client
"{3DF7D356-6225-8717-AFC2-91D5C1521036}" = AMD Media Foundation Decoders
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{4745F6F8-09DA-CC39-EC19-0E8D764CF2B7}" = CCC Help Chinese Standard
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{4FA31DE2-B613-24BB-1738-B655C00B1C9D}" = CCC Help Hungarian
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58771CF6-F212-CC4D-61B1-45CC70B6375C}" = CCC Help Dutch
"{644F4910-E812-49AD-93EC-86828CB81A0D}" = PC Connectivity Solution
"{6D5CE5F1-CBB0-9ED4-1A1E-91DDCD6225FD}" = CCC Help Italian
"{707210B0-29F1-C550-BA96-6ECDA245CF24}" = CCC Help Spanish
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.16
"{7F644A4B-C9A7-E419-BFD9-75DFA0EE57DB}" = AMD Accelerated Video Transcoding
"{812B956B-37AB-24B9-4527-78A6D3ECE7F8}" = CCC Help Korean
"{83293709-B863-0EF6-00DA-B026D486E8B5}" = CCC Help Polish
"{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}" = Nokia PC Suite
"{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}" = Catalyst Control Center - Branding
"{89CE7F9B-B4DF-8585-638B-6BD807ADE9C7}" = HydraVision
"{8D5B19AA-3D3A-5870-C9A0-346EBC5DB21E}" = ccc-utility
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90150000-001B-0000-0000-0000000FF1CE}" = Microsoft Word 2013
"{90150000-001B-0405-0000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001F-0405-0000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-041B-0000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-00E1-0405-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{911904DE-EBB6-BC8E-D5BD-762B7DB42C46}" = CCC Help Greek
"{91c3ca44-e343-4886-aab6-7ecb6229310c}" = Nero 9 Essentials
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{93538CBE-F87E-4B79-872C-D0D098EB42EE}" = FloorPlan 3D v8
"{95140000-00AF-0405-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9903011B-5F1D-A2A1-8078-EE62B3324CCE}" = CCC Help Portuguese
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A7F1628-2126-34A5-852D-2B93328BCF3F}" = CCC Help German
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D5101BD-3010-4D6D-8ED5-19656286A07E}" = STORMWARE GLX CZ Mini
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A50DE037-B5C0-4C8A-8049-B0C576B313D1}" = Google+ Auto Backup
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A7A2804D-7EF9-4F2A-AC16-A40E9F1C1CF6}" = Růžový panter: Honba za pokladem
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.07) - Czech
"{ACEF85BD-2489-BE0E-9965-CE2F661260AA}" = AMD Fuel
"{AE6C422B-DADB-D547-411C-E9E56DF03D16}" = CCC Help Russian
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B09567CC-E43F-10F1-752D-549AC7FB0C43}" = CCC Help Finnish
"{B170B91D-E8E3-A6A3-D129-D8E36FEA8A0B}" = CCC Help Norwegian
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{BB285C9F-C821-4770-8970-56C4AB52C87E}" = Skype Click to Call
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BD96ABD3-D1D4-5513-6C60-11476D6DCFC5}" = Catalyst Control Center Localization All
"{C39C7876-4D21-8A38-0A42-B5C8858EC6C7}" = CCC Help French
"{C841483C-8A64-452A-93C8-53D5CDE03F8A}" = CzRus QWERTY Caps 2.0.2
"{D4236B82-213F-679E-09A2-9AEB5EF4CADC}" = Catalyst Control Center Graphics Previews Common
"{DBA18992-B9F3-950D-E973-6ED23422EA73}" = AMD Drag and Drop Transcoding
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{E39A80F3-7C45-460F-8DBD-C29F25A865EA}" = Hebrew Phonetic Keyboard 0.9.0
"{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{E9BEA8AF-D21F-4D9F-B791-9C7F09144655}" = STORMWARE POHODA CZ Premium
"{EBBD4FE6-91DA-C397-6D56-FE85DBF24FCF}" = AMD VISION Engine Control Center
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FCEFDA6B-63CD-BB17-B845-478A42E24D39}" = CCC Help Swedish
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"4MCAD 14 Classic_is1" = 4MCAD 14 Classic
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Adobe Flash Player ActiveX" = Adobe Flash Player 13 ActiveX
"AIDA64 Extreme_is1" = AIDA64 Extreme v4.00
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"Deer Avenger 4" = Deer Avenger 4
"Duke Nukem - Manhattan Project_is1" = Duke Nukem - Manhattan Project
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"EPSON B-510DN" = EPSON B-510DN Printer Uninstall
"FastStone Capture" = FastStone Capture 7.8
"FLV and Media Player" = FLV and Media Player 4.2.1.1
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"InstallShield_{A7A2804D-7EF9-4F2A-AC16-A40E9F1C1CF6}" = Růžový panter: Honba za pokladem
"LManager" = Launch Manager
"Microsoft Report Viewer Redistributable 2008 (KB971119)" = Microsoft Report Viewer Redistributable 2008 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Nokia PC Suite" = Nokia PC Suite
"Office14.SingleImage" = Microsoft Office 2010 pro podnikatele
"Office15.WORD" = Microsoft Word 2013
"Picasa 3" = Picasa 3
"Project: Snowblind" = Project: Snowblind 1.0
"Raptr" = Raptr
"Samsung SCX-4x24 Series" = Samsung SCX-4x24 Series
"STORMWARE PDF Printer_is1" = STORMWARE PDF Printer 8.2.0.1406
"VLC media player" = VLC media player 2.0.4
"WinRAR archiver" = WinRAR 5.01 beta 1 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2962489488-1740152995-2069433674-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent" = BitTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 19.7.2014 19:27:04 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 19.7.2014 19:36:01 | Computer Name = uživatel-PC | Source = Office 2013 Licensing Service | ID = 0
Description =

Error - 20.7.2014 6:37:41 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 20.7.2014 6:50:36 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 20.7.2014 14:23:33 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 20.7.2014 14:43:39 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 20.7.2014 15:12:45 | Computer Name = uživatel-PC | Source = Microsoft-Windows-WMI | ID = 10
Description = Event filter with query "SELECT * FROM __InstanceModificationEvent
WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage
> 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003.
Events cannot be delivered through this filter until the problem is corrected.

Error - 20.7.2014 17:22:53 | Computer Name = uživatel-PC | Source = MsiInstaller | ID = 11723
Description = Produkt: AMD Catalyst Install Manager - Chyba 1723. U balíčku Instalační
služby systému Windows došlo k potížím. Knihovna DLL požadovaná k dokončení této
instalace nemůže být spuštěna. Obraťte se na pracovníky podpory nebo na dodavatele
balíčku. Akce: SetInstallDir, položka: SetInstallDir, knihovna: C:\Windows\Installer\MSIF524.tmp

Error - 20.7.2014 17:42:03 | Computer Name = uživatel-PC | Source = MsiInstaller | ID = 11723
Description = Produkt: AMD Catalyst Install Manager - Chyba 1723. U balíčku Instalační
služby systému Windows došlo k potížím. Knihovna DLL požadovaná k dokončení této
instalace nemůže být spuštěna. Obraťte se na pracovníky podpory nebo na dodavatele
balíčku. Akce: SetInstallDir, položka: SetInstallDir, knihovna: C:\Windows\Installer\MSI84FD.tmp

[ System Events ]
Error - 20.7.2014 6:36:03 | Computer Name = uživatel-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (8:21:51, ?20.?7.?2014) bylo neočekávané.

Error - 20.7.2014 6:36:14 | Computer Name = uživatel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 20.7.2014 6:47:51 | Computer Name = uživatel-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.179.433.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853

Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10802.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.

Error - 20.7.2014 6:47:51 | Computer Name = uživatel-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.179.433.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853

Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10802.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.

Error - 20.7.2014 6:49:06 | Computer Name = uživatel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 20.7.2014 14:22:00 | Computer Name = uživatel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 20.7.2014 14:24:50 | Computer Name = uživatel-PC | Source = WMPNetworkSvc | ID = 866300
Description = Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance
(CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná
služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error - 20.7.2014 14:42:06 | Computer Name = uživatel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 20.7.2014 15:11:14 | Computer Name = uživatel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%20

Error - 20.7.2014 15:11:54 | Computer Name = uživatel-PC | Source = WMPNetworkSvc | ID = 866300
Description = Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance
(CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná
služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

< End of report >

#18 Příspěvek od **Márty84** » 21 črc 2014 06:50

Napiste mi velikost adresare plochy (C:\Users\Matěj\Desktop)

Vypnete antivir, at nebrani programu v praci.

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
MpKslda1d1e53
MBAMSwissArmy
c2cautoupdatesvc
c2cpnrsvc
AdobeARMservice
AdobeFlashPlayerUpdateSvc
gupdate
gupdatem
gusvc
Nero BackItUp Scheduler 4.0
SkypeUpdate

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:otl
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKU\S-1-5-21-2962489488-1740152995-2069433674-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKU\S-1-5-21-2962489488-1740152995-2069433674-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[9 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[5 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
@Alternate Data Stream - 6392 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"=-
"Adobe ARM"=-
"Samsung PanelMgr"=-
"4x24 Scan2PC"=-
"NSU_agent"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Attistar · #19 Příspěvek od **Attistar** » 21 črc 2014 12:03

3,75 GB

OTL logfile created on: 21.7.2014 12:30:42 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Matěj\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1013,42 Mb Total Physical Memory | 141,38 Mb Available Physical Memory | 13,95% Memory free
1,99 Gb Paging File | 0,69 Gb Available in Paging File | 34,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 186,41 Gb Free Space | 62,56% Space Free | Partition Type: NTFS

Computer Name: UŽIVATEL-PC | User Name: Matěj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.07.21 12:29:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Matěj\Desktop\OTL.exe
PRC - [2014.07.15 11:24:50 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014.04.11 19:45:50 | 001,764,992 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2014.04.11 19:45:42 | 001,390,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2014.03.11 10:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2014.03.11 10:13:14 | 000,951,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013.02.23 06:40:27 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012.01.11 16:24:39 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.08.21 05:57:12 | 000,614,400 | ---- | M] () -- C:\Windows\Samsung\PanelMgr\SSMMgr.exe
PRC - [2008.09.29 01:18:46 | 000,495,616 | ---- | M] () -- C:\Windows\twain_32\Samsung\SCX4x24\Scan2Pc.exe

========== Modules (No Company Name) ==========

MOD - [2014.07.15 11:24:48 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ppgooglenaclpluginchrome.dll
MOD - [2014.07.15 11:24:46 | 014,664,008 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll
MOD - [2014.07.15 11:24:44 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\pdf.dll
MOD - [2014.07.15 11:24:35 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
MOD - [2014.05.26 19:04:32 | 011,926,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\e26d20d803045f9826c9db3a5428a674\System.Web.ni.dll
MOD - [2014.05.26 19:03:14 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\f183e093a6fe96848f97b54861cb5cfe\System.Runtime.Remoting.ni.dll
MOD - [2014.02.13 08:36:52 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\5bbfddda63a1283dc40775a10a655b76\WindowsFormsIntegration.ni.dll
MOD - [2014.02.13 07:30:23 | 002,297,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\7ca198ce0678a1feb62b2fdfb60c7cec\System.Core.ni.dll
MOD - [2014.02.13 07:22:58 | 000,226,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b20c23a647b2b1ee8623cb17bc1aa2f8\PresentationFramework.Classic.ni.dll
MOD - [2014.02.13 07:22:05 | 014,344,192 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\76d1e682a5b80792cd0f104dc4867aa2\PresentationFramework.ni.dll
MOD - [2014.02.13 07:21:39 | 012,435,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9dffc88a612a54345330f4fd5a163526\System.Windows.Forms.ni.dll
MOD - [2014.02.13 07:21:27 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d0bb6fcf40879c657531f019c9d4143e\System.Drawing.ni.dll
MOD - [2014.02.13 07:21:23 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1e7316a2dff07b9907b0b48782a0f138\UIAutomationProvider.ni.dll
MOD - [2014.02.13 07:21:21 | 012,239,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\915fa0b4ddf5538ba94b71f0523430d4\PresentationCore.ni.dll
MOD - [2014.02.13 07:21:04 | 003,349,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6bed28b51eb4520f4cd0f26d097da8dc\WindowsBase.ni.dll
MOD - [2014.02.13 07:20:54 | 005,463,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cebf414a03abb5c514d6ac94c5c5d2bb\System.Xml.ni.dll
MOD - [2014.02.13 07:20:48 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\88ed0292613452dff93b0f6d87a0df15\System.Configuration.ni.dll
MOD - [2014.02.13 07:20:46 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\d51a4cd53e9ab1a925cad78fd62c984f\System.ni.dll
MOD - [2014.02.13 07:20:34 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\83ca3470d7ffd45618c0bfbbd0ba5fb3\mscorlib.ni.dll
MOD - [2014.02.10 13:44:24 | 004,592,128 | ---- | M] () -- C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libGLESv2.dll
MOD - [2014.02.10 13:44:24 | 000,112,128 | ---- | M] () -- C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libEGL.dll
MOD - [2014.01.28 18:51:36 | 008,007,680 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2013.06.18 16:49:28 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2013.04.30 00:08:08 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2012.01.11 16:26:46 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2012.01.11 16:26:46 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2011.04.12 03:36:58 | 000,237,568 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2011.04.12 03:36:58 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2011.04.12 03:36:50 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
MOD - [2009.08.21 05:57:12 | 000,614,400 | ---- | M] () -- C:\Windows\Samsung\PanelMgr\SSMMgr.exe
MOD - [2008.09.29 01:18:46 | 000,495,616 | ---- | M] () -- C:\Windows\twain_32\Samsung\SCX4x24\Scan2Pc.exe
MOD - [2008.09.11 05:57:46 | 000,367,104 | ---- | M] () -- C:\Windows\twain_32\Samsung\SCX4x24\NetModule.dll
MOD - [2008.09.11 05:57:44 | 000,155,648 | ---- | M] () -- C:\Windows\twain_32\Samsung\SCX4x24\IMFilter.dll
MOD - [2008.05.29 11:10:48 | 001,384,520 | ---- | M] () -- C:\Windows\twain_32\Samsung\SCX4x24\SSOle.dll

========== Services (SafeList) ==========

SRV - [2014.06.19 01:23:24 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014.05.22 18:14:04 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.04.11 19:45:50 | 001,764,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2014.04.11 19:45:42 | 001,390,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014.03.11 10:13:24 | 000,279,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2014.03.11 10:13:24 | 000,022,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2014.01.28 21:35:22 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013.12.21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.10.23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.04.30 05:52:26 | 000,217,088 | ---- | M] (AMD) [Disabled | Stopped] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013.04.30 00:24:04 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) [Disabled | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2012.06.11 12:33:26 | 000,724,376 | ---- | M] (Nokia) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.07.20 12:51:52 | 000,935,208 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009.07.14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)

========== Driver Services (SafeList) ==========

DRV - File not found [File_System | On_Demand | Stopped] -- C:\Windows\system32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - File not found [Kernel | System | Stopped] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
DRV - [2014.07.18 17:40:54 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2014.03.11 09:52:30 | 000,104,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013.04.30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2013.04.30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2013.04.30 04:47:52 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2012.06.11 12:33:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.05.14 08:12:28 | 000,086,656 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2012.01.09 18:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012.01.09 18:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012.01.09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012.01.09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010.11.20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010.11.20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.02.18 10:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdiox86.sys -- (amdiox86)
DRV - [2010.01.20 06:14:42 | 000,023,136 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV - [2009.12.14 12:44:42 | 001,245,696 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008.04.29 02:54:58 | 000,054,784 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)
DRV - [2008.02.27 20:36:02 | 000,141,408 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService)
DRV - [2007.12.11 22:47:08 | 000,005,120 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\SSPORT.SYS -- (SSPORT)
DRV - [2007.12.11 06:47:06 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\DGIVECP.SYS -- (DgiVecp)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.65.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage:
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Disk Google = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: VyhledĂˇvĂˇnĂ Google = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Lookup Companion for Wikipedia = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej\1.9.0_0\
CHR - Extension: Adblock Pro = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcnjkhhefobgkhmaeojefkciblgaml\1.0_0\
CHR - Extension: AdBlock = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.7_0\
CHR - Extension: Skype Click to Call = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.2.15747.10003_0\
CHR - Extension: PenÄ›Ĺľenka Google = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Matěj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [4x24 Scan2PC] C:\Windows\twain_32\Samsung\SCX4x24\Scan2Pc.exe ()
O4 - HKLM..\Run: [AMD AVT] C:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NSU_agent] C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe ()
O4 - HKLM..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{85AE3507-76D8-4081-A415-80CF6FDBA868}: DhcpNameServer = 192.168.1.254 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A85F59E5-0169-46EE-B947-B990C36754E3}: DhcpNameServer = 192.168.1.254 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E118D8FD-6D5D-437A-A3A8-A3A32DCB8670}: DhcpNameServer = 192.168.1.254 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FEFA9982-CEE6-4845-89D4-24D0388231C7}: DhcpNameServer = 192.168.1.254 8.8.8.8
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{9ce795f7-0dc8-11e4-88cb-60eb69d71ea7}\Shell - "" = AutoRun
O33 - MountPoints2\{9ce795f7-0dc8-11e4-88cb-60eb69d71ea7}\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[CREATERESTOREPOINT]
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2014.07.21 12:29:03 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Matěj\Desktop\OTL.exe
[2014.07.21 03:27:28 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Documents\Scanned Documents
[2014.07.21 03:27:10 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Documents\Fax
[2014.07.20 23:00:13 | 000,890,744 | ---- | C] (AMD) -- C:\Users\Matěj\Desktop\amddriverdownloader.exe
[2014.07.20 21:31:16 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\FastStone
[2014.07.20 21:31:16 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\FastStone
[2014.07.20 21:30:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture
[2014.07.20 21:30:42 | 000,000,000 | ---D | C] -- C:\Program Files\FastStone Capture
[2014.07.20 21:26:22 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\Nová složka
[2014.07.20 14:29:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014.07.20 14:29:32 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\Programs
[2014.07.20 14:25:51 | 017,292,760 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Matěj\Desktop\mbam-setup-2.0.2.1012.exe
[2014.07.20 12:43:56 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2014.07.20 12:41:24 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.07.20 00:21:15 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\AVG
[2014.07.20 00:20:58 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014.07.20 00:17:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC Tuneup 2011
[2014.07.20 00:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2014.07.19 22:20:20 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\24031
[2014.07.19 19:47:49 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wanadoo Edition
[2014.07.19 19:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.07.19 16:21:12 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Documents\Project Snowblind
[2014.07.19 16:17:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
[2014.07.19 16:15:10 | 000,000,000 | ---D | C] -- C:\Program Files\Project Snowblind
[2014.07.19 15:59:15 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\Project.Snowblind-HOODLUM
[2014.07.19 08:29:09 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.07.19 05:59:48 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\BitTorrent
[2014.07.19 03:59:44 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
[2014.07.19 03:58:23 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\library_dir
[2014.07.19 03:56:07 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Raptr
[2014.07.19 03:56:06 | 000,000,000 | ---D | C] -- C:\Program Files\Raptr
[2014.07.19 03:48:45 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\AppData\Local\EmieUserList
[2014.07.19 03:48:45 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\AppData\Local\EmieSiteList
[2014.07.18 22:35:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deer Avenger 4
[2014.07.18 22:34:14 | 000,000,000 | ---D | C] -- C:\Deer Avenger 4
[2014.07.18 18:00:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wanadoo Edition
[2014.07.18 18:00:51 | 000,000,000 | ---D | C] -- C:\Program Files\directx
[2014.07.18 17:59:51 | 000,000,000 | ---D | C] -- C:\Program Files\Wanadoo Edition
[2014.07.18 17:43:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014.07.18 17:40:53 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2014.07.18 17:40:36 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\DAEMON Tools Lite
[2014.07.18 17:40:06 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2014.07.18 17:38:05 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014.07.18 14:28:26 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\Captain°°Claw°°(2002)
[2014.07.18 12:40:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2014.07.18 12:39:13 | 000,000,000 | ---D | C] -- C:\Program Files\GOG.com
[2014.07.18 12:37:02 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\Duke Nukem Manhattan Project
[2014.07.17 17:36:01 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Documents\Euro Truck Simulator 2
[2014.07.17 16:31:07 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2014.07.16 23:24:19 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\RYTMUS - BENGORO
[2014.07.16 20:18:20 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\FLV and Media Player
[2014.07.16 20:17:30 | 000,000,000 | ---D | C] -- C:\Users\Matěj\Desktop\EKTOR & DJ WICH - TETRIS (2013)
[2014.07.16 20:17:11 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\WinRAR
[2014.07.16 17:52:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014.07.16 17:52:21 | 000,272,808 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014.07.16 17:51:51 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014.07.16 17:51:51 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014.07.16 17:51:51 | 000,096,680 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014.07.16 17:51:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014.07.16 17:42:09 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\S2PC
[2014.07.16 17:41:58 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\ATI
[2014.07.16 17:41:58 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\ATI
[2014.07.16 17:41:18 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\Google
[2014.07.16 17:41:12 | 000,000,000 | R--D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014.07.16 17:41:12 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Searches
[2014.07.16 17:41:12 | 000,000,000 | R--D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014.07.16 17:40:51 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Identities
[2014.07.16 17:40:02 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Contacts
[2014.07.16 17:39:28 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Adobe
[2014.07.16 17:39:09 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\VirtualStore
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\AppData\Local\Temporary Internet Files
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Šablony
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Soubory cookie
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\SendTo
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Poslední
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Okolní tiskárny
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Okolní síť
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Documents\Obrázky
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Nabídka Start
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Local Settings
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Documents\Hudba
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\AppData\Local\History
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Documents\Filmy
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Dokumenty
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\Data aplikací
[2014.07.16 17:38:59 | 000,000,000 | -HSD | C] -- C:\Users\Matěj\AppData\Local\Data aplikací
[2014.07.16 17:38:56 | 000,000,000 | --SD | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft
[2014.07.16 17:38:56 | 000,000,000 | R--D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014.07.16 17:38:56 | 000,000,000 | R--D | C] -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014.07.16 17:38:56 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\Temp
[2014.07.16 17:38:56 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\Microsoft Help
[2014.07.16 17:38:56 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Local\Microsoft
[2014.07.16 17:38:56 | 000,000,000 | ---D | C] -- C:\Users\Matěj\AppData\Roaming\Media Center Programs
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Videos
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Saved Games
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Pictures
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Music
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Links
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Favorites
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Downloads
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Documents
[2014.07.16 17:38:55 | 000,000,000 | R--D | C] -- C:\Users\Matěj\Desktop
[2014.07.16 17:38:55 | 000,000,000 | -H-D | C] -- C:\Users\Matěj\AppData
[2014.07.15 21:22:27 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014.07.15 21:22:26 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014.07.15 21:22:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014.07.15 21:22:22 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014.07.15 21:22:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014.07.15 21:22:18 | 000,240,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014.07.15 21:22:18 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014.07.15 21:22:18 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014.07.15 21:22:16 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014.07.15 21:22:16 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014.07.15 21:22:15 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014.07.15 21:22:14 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014.07.15 21:22:11 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014.07.15 21:22:10 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014.07.15 21:22:09 | 000,595,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014.07.15 21:22:08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014.07.15 21:22:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014.07.15 21:22:02 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014.07.15 21:21:59 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014.07.15 21:21:53 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014.07.15 21:21:51 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014.07.15 21:21:41 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014.07.15 21:21:29 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014.07.15 21:21:14 | 002,350,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014.07.15 21:21:12 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014.07.15 21:20:09 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014.07.15 20:58:49 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014.07.15 20:58:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014.07.15 20:49:27 | 000,000,000 | ---D | C] -- C:\70aecd3afafc04fb51
[2014.07.15 20:36:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014.07.15 20:36:22 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014.06.28 21:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014.06.28 20:40:43 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2014.06.28 20:40:43 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2014.06.28 20:40:36 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014.06.28 20:40:35 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.07.21 12:33:07 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.07.21 12:29:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Matěj\Desktop\OTL.exe
[2014.07.21 12:18:16 | 000,021,504 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.07.21 12:18:16 | 000,021,504 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.07.21 12:11:06 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.07.21 12:10:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.07.21 12:10:34 | 796,987,392 | -HS- | M] () -- C:\hiberfil.sys
[2014.07.21 12:09:27 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.07.20 23:00:56 | 000,890,744 | ---- | M] (AMD) -- C:\Users\Matěj\Desktop\amddriverdownloader.exe
[2014.07.20 22:21:43 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.07.20 21:35:45 | 000,469,921 | ---- | M] () -- C:\Users\Matěj\Desktop\2014-07-20_213145.png
[2014.07.20 21:30:52 | 000,001,037 | ---- | M] () -- C:\Users\Public\Desktop\FastStone Capture.lnk
[2014.07.20 21:30:20 | 002,966,142 | ---- | M] () -- C:\Users\Matěj\Desktop\FSCaptureSetup78.exe
[2014.07.20 21:23:10 | 001,496,172 | ---- | M] () -- C:\Users\Matěj\Desktop\CrystalDiskInfo5_0_0.zip
[2014.07.20 14:29:00 | 017,292,760 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Matěj\Desktop\mbam-setup-2.0.2.1012.exe
[2014.07.20 12:40:29 | 001,354,223 | ---- | M] () -- C:\Users\Matěj\Desktop\adwcleaner_3.216.exe
[2014.07.20 00:17:57 | 000,001,139 | ---- | M] () -- C:\Users\Matěj\Desktop\AVG PC Tuneup 2011.lnk
[2014.07.19 19:47:50 | 000,002,079 | ---- | M] () -- C:\Users\Matěj\Desktop\Pink Panther.lnk
[2014.07.19 16:17:58 | 000,001,037 | ---- | M] () -- C:\Users\Public\Desktop\Project Snowblind.lnk
[2014.07.19 06:01:31 | 000,000,874 | ---- | M] () -- C:\Users\Matěj\Desktop\BitTorrent.lnk
[2014.07.19 04:35:58 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.07.18 22:35:46 | 000,000,631 | ---- | M] () -- C:\Users\Public\Desktop\Deer Avenger 4.lnk
[2014.07.18 18:09:19 | 000,668,376 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2014.07.18 18:09:19 | 000,653,724 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.07.18 18:09:19 | 000,141,004 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2014.07.18 18:09:19 | 000,121,596 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.07.18 17:56:47 | 000,001,900 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014.07.18 17:40:54 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2014.07.18 12:40:40 | 000,002,180 | ---- | M] () -- C:\Users\Public\Desktop\Duke Nukem - Manhattan Project.lnk
[2014.07.16 19:49:59 | 000,007,605 | ---- | M] () -- C:\Users\Matěj\AppData\Local\resmon.resmoncfg
[2014.07.16 19:48:37 | 001,052,672 | ---- | M] () -- C:\Users\Matěj\Documents\Q.evtx
[2014.07.16 12:46:07 | 000,431,680 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014.07.15 20:36:43 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014.07.11 03:02:10 | 000,096,680 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014.07.11 02:56:08 | 000,272,808 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014.07.11 02:56:01 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014.07.11 02:55:32 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014.06.30 03:40:16 | 000,404,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014.06.30 03:36:00 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014.06.28 21:12:40 | 000,013,778 | ---- | M] () -- C:\Windows\System32\results.xml
[4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.07.20 22:08:18 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.07.20 21:31:57 | 000,469,921 | ---- | C] () -- C:\Users\Matěj\Desktop\2014-07-20_213145.png
[2014.07.20 21:30:52 | 000,001,037 | ---- | C] () -- C:\Users\Public\Desktop\FastStone Capture.lnk
[2014.07.20 21:29:27 | 002,966,142 | ---- | C] () -- C:\Users\Matěj\Desktop\FSCaptureSetup78.exe
[2014.07.20 21:22:41 | 001,496,172 | ---- | C] () -- C:\Users\Matěj\Desktop\CrystalDiskInfo5_0_0.zip
[2014.07.20 12:40:03 | 001,354,223 | ---- | C] () -- C:\Users\Matěj\Desktop\adwcleaner_3.216.exe
[2014.07.20 00:17:57 | 000,001,139 | ---- | C] () -- C:\Users\Matěj\Desktop\AVG PC Tuneup 2011.lnk
[2014.07.19 19:47:50 | 000,002,079 | ---- | C] () -- C:\Users\Matěj\Desktop\Pink Panther.lnk
[2014.07.19 16:17:58 | 000,001,037 | ---- | C] () -- C:\Users\Public\Desktop\Project Snowblind.lnk
[2014.07.19 06:01:31 | 000,000,874 | ---- | C] () -- C:\Users\Matěj\Desktop\BitTorrent.lnk
[2014.07.18 22:35:45 | 000,000,631 | ---- | C] () -- C:\Users\Public\Desktop\Deer Avenger 4.lnk
[2014.07.18 17:56:47 | 000,001,900 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014.07.18 12:40:40 | 000,002,180 | ---- | C] () -- C:\Users\Public\Desktop\Duke Nukem - Manhattan Project.lnk
[2014.07.16 19:48:47 | 000,007,605 | ---- | C] () -- C:\Users\Matěj\AppData\Local\resmon.resmoncfg
[2014.07.16 19:48:36 | 001,052,672 | ---- | C] () -- C:\Users\Matěj\Documents\Q.evtx
[2014.07.16 17:39:26 | 000,001,397 | ---- | C] () -- C:\Users\Matěj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014.07.15 20:36:43 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014.01.28 20:19:04 | 000,482,408 | ---- | C] () -- C:\Windows\ssndii.exe
[2014.01.28 20:18:33 | 000,113,768 | ---- | C] () -- C:\Windows\Wiainst.exe
[2014.01.28 20:17:56 | 000,217,088 | ---- | C] () -- C:\Windows\System32\ssminidriver.dll
[2014.01.28 20:17:56 | 000,027,136 | ---- | C] () -- C:\Windows\System32\ssimgfilter.dll
[2014.01.28 20:17:56 | 000,011,264 | ---- | C] () -- C:\Windows\System32\sssegfilter.dll
[2014.01.28 20:17:56 | 000,010,752 | ---- | C] () -- C:\Windows\System32\sserrhandler.dll
[2014.01.28 20:17:54 | 000,022,723 | ---- | C] () -- C:\Windows\System32\sss1ml3.dll
[2014.01.27 12:15:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014.01.27 11:32:36 | 000,107,276 | ---- | C] () -- C:\Windows\System32\drivers\RtConvEQ.DAT
[2014.01.27 11:32:36 | 000,000,632 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
[2014.01.27 11:32:36 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
[2014.01.27 11:32:36 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2014.01.27 11:32:36 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2014.01.27 11:32:36 | 000,000,016 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2014.01.27 11:31:01 | 000,000,000 | ---- | C] () -- C:\Windows\Setup.INI
[2013.04.30 04:30:54 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2013.04.30 04:30:54 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2013.04.30 00:36:28 | 000,159,232 | ---- | C] () -- C:\Windows\System32\clinfo.exe
[2013.02.23 06:46:33 | 000,000,712 | ---- | C] () -- C:\Windows\System32\RTSLCS.dll

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.03.25 04:18:50 | 012,877,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013.02.23 06:04:20 | 000,636,928 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2013.02.23 06:04:19 | 000,351,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Custom Scans ==========

< :commands >

< [EMPTYTEMP] >

< [EMPTYFLASH] >

< [Purity] >

< >

< :services >

< MpKslda1d1e53 >

< MBAMSwissArmy >

< c2cautoupdatesvc >

< c2cpnrsvc >

< AdobeARMservice >

< AdobeFlashPlayerUpdateSvc >

< gupdate >

< gupdatem >

< gusvc >

< Nero BackItUp Scheduler 4.0 >

< SkypeUpdate >

< >

< :files >

< %windir%\system32\*.tmp.dll /s >

< %windir%\system32\SET*.tmp /s >

< %windir%\*.tmp >

< C:\Windows\tasks\Adobe Flash Player Updater.job >
[2014.07.21 12:58:34 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job

< C:\Windows\tasks\GoogleUpdateTaskMachineCore.job >
[2014.07.21 12:11:06 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

< C:\Windows\tasks\GoogleUpdateTaskMachineUA.job >
[2014.07.21 12:33:07 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

< >

< :otl >

< IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com >

< IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC >

< IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com >

< IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com >

< IE - HKU\S-1-5-21-2962489488-1740152995-2069433674-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.bing.com >

< IE - HKU\S-1-5-21-2962489488-1740152995-2069433674-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR >

< O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) >

< O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) >

< O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. >

< [4 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ] >

< [9 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] >

< [5 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] >

< [1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ] >

< @Alternate Data Stream - 6392 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh >

< @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4 >

< >

< :reg >

< [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] >

< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >

< "AMD AVT"=- >

< "Adobe ARM"=- >

< "Samsung PanelMgr"=- >

< "4x24 Scan2PC"=- >

< "NSU_agent"=- >

< [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray] >

< [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] >

========== Alternate Data Streams ==========

@Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:0B4227B4

< End of report >

#20 Příspěvek od **Márty84** » 21 črc 2014 12:15

Attistar píše:3,75 GB

Velikost plochy by nemela preshovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Vy jste v OTL nekliknul na napis Opravit, ale udelal jste novy sken! Ctete poradne, jinak hrozi, ze si poslete system do kytek. Takze repete

Attistar · #21 Příspěvek od **Attistar** » 21 črc 2014 12:32

Tady se člověk dozví vždy něco nového, takže jdu přesunovat a mazat

Tou rychlostí PC si myslím, že PC mě pošle do kytek mě.

íAll processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Matěj
->Temp folder emptied: 444011870 bytes
->Temporary Internet Files folder emptied: 5675605 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 350652633 bytes

User: Public

User: uživatel
->Temp folder emptied: 202581 bytes
->Temporary Internet Files folder emptied: 347630 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 110538245 bytes
->Flash cache emptied: 595 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 546593 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 870,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Matěj

User: Public

User: uživatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Error: No service named MpKslda1d1e53 was found to stop!
Service\Driver key MpKslda1d1e53 not found.
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Service c2cautoupdatesvc stopped successfully!
Service c2cautoupdatesvc deleted successfully!
Service c2cpnrsvc stopped successfully!
Service c2cpnrsvc deleted successfully!
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service Nero BackItUp Scheduler 4.0 stopped successfully!
Service Nero BackItUp Scheduler 4.0 deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-2962489488-1740152995-2069433674-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2962489488-1740152995-2069433674-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}\ deleted successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll moved successfully.
File C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
File C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Program Files\GUMA41E.tmp\GoogleCrashHandler.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleCrashHandler64.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdate.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdateBroker.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdateComRegisterShell64.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdateHelper.msi deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdateOnDemand.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\GoogleUpdateSetup.exe deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdate.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_am.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ar.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_bg.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_bn.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ca.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_cs.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_da.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_de.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_el.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_en-GB.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_en.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_es-419.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_es.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_et.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_fa.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_fi.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_fil.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_fr.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_gu.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_hi.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_hr.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_hu.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_id.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_is.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_it.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_iw.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ja.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_kn.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ko.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_lt.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_lv.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ml.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_mr.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ms.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_nl.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_no.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_pl.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_pt-BR.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_pt-PT.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ro.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ru.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_sk.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_sl.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_sr.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_sv.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_sw.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ta.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_te.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_th.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_tr.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_uk.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_ur.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_vi.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_zh-CN.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\goopdateres_zh-TW.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\npGoogleUpdate3.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\psmachine.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\psmachine_64.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\psuser.dll deleted successfully.
C:\Program Files\GUMA41E.tmp\psuser_64.dll deleted successfully.
C:\Program Files\GUMA41E.tmp folder deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleCrashHandler.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleCrashHandler64.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdate.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdateBroker.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdateComRegisterShell64.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdateHelper.msi deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdateOnDemand.exe deleted successfully.
C:\Program Files\GUMA509.tmp\GoogleUpdateSetup.exe deleted successfully.
C:\Program Files\GUMA509.tmp\goopdate.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_am.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ar.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_bg.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_bn.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ca.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_cs.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_da.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_de.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_el.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_en-GB.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_en.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_es-419.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_es.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_et.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_fa.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_fi.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_fil.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_fr.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_gu.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_hi.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_hr.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_hu.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_id.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_is.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_it.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_iw.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ja.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_kn.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ko.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_lt.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_lv.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ml.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_mr.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ms.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_nl.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_no.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_pl.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_pt-BR.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_pt-PT.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ro.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ru.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_sk.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_sl.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_sr.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_sv.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_sw.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ta.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_te.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_th.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_tr.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_uk.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_ur.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_vi.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_zh-CN.dll deleted successfully.
C:\Program Files\GUMA509.tmp\goopdateres_zh-TW.dll deleted successfully.
C:\Program Files\GUMA509.tmp\npGoogleUpdate3.dll deleted successfully.
C:\Program Files\GUMA509.tmp\psmachine.dll deleted successfully.
C:\Program Files\GUMA509.tmp\psmachine_64.dll deleted successfully.
C:\Program Files\GUMA509.tmp\psuser.dll deleted successfully.
C:\Program Files\GUMA509.tmp\psuser_64.dll deleted successfully.
C:\Program Files\GUMA509.tmp folder deleted successfully.
C:\Program Files\GUTA41F.tmp deleted successfully.
C:\Program Files\GUTA52A.tmp deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3B0C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7C7F.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP82F4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDBC1.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE31E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF537.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF7D8.tmp folder deleted successfully.
C:\Windows\Installer\MSI5BED.tmp- folder deleted successfully.
C:\Windows\Installer\MSI6041.tmp- folder deleted successfully.
C:\Windows\Installer\MSI629.tmp deleted successfully.
C:\Windows\Installer\MSIB5AC.tmp- folder deleted successfully.
C:\Windows\Installer\MSIC576.tmp- folder deleted successfully.
ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
ADS C:\ProgramData\TEMP:0B4227B4 deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AMD AVT deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Samsung PanelMgr deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\4x24 Scan2PC deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NSU_agent deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype\ deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 07212014_132116

Files\Folders moved on Reboot...
C:\Windows\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#22 Příspěvek od **Márty84** » 21 črc 2014 12:46

Attistar píše:Tou rychlostí PC si myslím, že PC mě pošle do kytek mě.

I to je mozne, pc je pekelny stroj

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak je na tom pc.

Attistar · #23 Příspěvek od **Attistar** » 21 črc 2014 14:56

Jinak na to TuneUp jsem byl vždy zvyklý a myslel jsem si, že mi opravdu pomáhá, tak jsem se mýlil. Můžete mi vy doporučit nějaký čistič ?

Jinak PC vypadá lépe a pročistil jsem si i plochu, takže Vám mockrát děkuji

#24 Příspěvek od **Márty84** » 21 črc 2014 15:04

Ja pouzivam jen CCleaner. Bohate staci a hlavne se jeste nestalo, ze by smazal neco, co nemel.

TuneUp zasahuje hloubeji do systemu, ale bohuzel to nekdy prezene a pak se to tezko dava do nejakeho prijatelneho stavu

PC je tedy v norme, nebo se podivame jeste hloubeji?

Attistar · #25 Příspěvek od **Attistar** » 21 črc 2014 15:13

Dobře, takže na TuneUp už ani nepomyslím

V normě není, i když si myslím, že to bude tou Windows 7, protože tento noťas je velmi slabý a asi tu W7 nezvládá

Takže asi tam zkusím hodit né příliš chválenou Vistu

Ale tak se můžeme podívat trošku hlouběji no...

#26 Příspěvek od **Márty84** » 21 črc 2014 16:17

Attistar píše:Dobře, takže na TuneUp už ani nepomyslím

Attistar píše:V normě není, i když si myslím, že to bude tou Windows 7, protože tento noťas je velmi slabý a asi tu W7 nezvládá

Ano, jste na minimalni povolene hranici. Ale kdyz u toho nesedim, nemuzu posoudit, jestli je to pouze tim, nebo by tomu jeste slo pomoct. Jelo to predtim lepe?

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

Attistar · #27 Příspěvek od **Attistar** » 21 črc 2014 16:30

Ne, rozhodně je to teď lepší než předtím. Proč ten ComboFix tak střežíte a upozorňujete, aby jsme byli opatrní ?

#28 Příspěvek od **Márty84** » 21 črc 2014 16:53

Attistar píše:Ne, rozhodně je to teď lepší než předtím.

Ja myslel predtim, nez zacli potize, jestli to jelo s tema sedmickama predtim plynuleji

Attistar píše:Proč ten ComboFix tak střežíte a upozorňujete, aby jsme byli opatrní ?

Je to silny nastroj a kdyz ho pouzije nekdo sam a neco se pokazi, nebude vedet, jak z toho ven. Navic ne vsechno, co smaze, se ukaze v logu, cili kdyz se pouzije pred drivejsi kontrolou jinych logu, muze smazat stopy pripadne nakazy a pak se neni ceho chytit. Navic temer vzdy je potreba docistit pomoci skriptu.

A zaloha proto, ze se v krajnim pripade muze stat, ze to skonci remizou. CF havet neznici, ale nedovoli ji se spustit, jenze havet ovlada system a timpadem nenajede ani system.

Krom toho, zalohovat se ma pravidelne, i kdyz je pc v pohode, hlavne fotky. Nikdy nevite, kdy selze treba disk a fotky vam nikdy nikdo nenahradi

Attistar · #29 Příspěvek od **Attistar** » 21 črc 2014 17:06

Ze začátku to jelo nádherně a nevím, co jsem s tím udělal, že se to tak zpomalilo všechno. Aha, tak to chápu...

ComboFix 14-07-21.01 - Matěj 21.07.2014 17:38:02.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.1013.146 [GMT 2:00]
Spuštěný z: c:\users\Matýj\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-21 do 2014-07-21 )))))))))))))))))))))))))))))))
.
.
2014-07-21 15:54 . 2014-07-21 15:54 -------- d-----w- c:\users\uživatel\AppData\Local\temp
2014-07-21 15:54 . 2014-07-21 15:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-07-21 13:59 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F597B779-0A70-4F2F-88C3-A5B4DB32A7AA}\mpengine.dll
2014-07-21 11:57 . 2014-07-21 11:57 -------- d-----w- c:\program files\Defraggler
2014-07-20 19:30 . 2014-07-20 19:30 -------- d-----w- c:\program files\FastStone Capture
2014-07-20 12:29 . 2014-07-20 12:29 -------- d-----w- c:\programdata\Malwarebytes
2014-07-20 11:05 . 2014-07-02 03:11 8217224 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-07-20 10:43 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-07-19 22:15 . 2014-07-19 22:15 -------- d-----w- c:\program files\AVG
2014-07-19 17:15 . 2014-07-21 11:58 -------- d-----w- c:\program files\trend micro
2014-07-19 14:15 . 2014-07-19 14:20 -------- d-----w- c:\program files\Project Snowblind
2014-07-18 16:00 . 2014-07-18 16:00 -------- d-----w- c:\program files\directx
2014-07-18 15:59 . 2014-07-18 15:59 -------- d-----w- c:\program files\Wanadoo Edition
2014-07-18 15:40 . 2014-07-18 15:40 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-07-18 15:40 . 2014-07-18 15:40 -------- d-----w- c:\program files\DAEMON Tools Lite
2014-07-18 15:38 . 2014-07-18 15:58 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-07-18 10:39 . 2014-07-18 10:39 -------- d-----w- c:\program files\GOG.com
2014-07-16 15:52 . 2014-07-16 15:52 -------- d-----w- c:\program files\Common Files\Java
2014-07-16 15:51 . 2014-07-11 01:02 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-07-16 15:38 . 2014-07-21 11:58 -------- d-----w- c:\users\Matěj
2014-07-15 19:26 . 2014-05-03 20:05 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9046719B-DA43-4FBF-A77D-467FFDD72C11}\gapaengine.dll
2014-07-15 19:20 . 2014-06-06 09:44 509440 ----a-w- c:\windows\system32\qedit.dll
2014-07-15 19:19 . 2014-05-30 06:25 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2014-07-15 19:15 . 2014-07-15 19:15 -------- d-sh--w- c:\users\uživatel\AppData\Local\EmieUserList
2014-07-15 19:15 . 2014-07-15 19:15 -------- d-sh--w- c:\users\uživatel\AppData\Local\EmieSiteList
2014-07-15 18:58 . 2014-06-30 01:40 404480 ----a-w- c:\windows\system32\aepdu.dll
2014-07-15 18:58 . 2014-06-30 01:36 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-07-15 18:58 . 2014-06-05 14:16 247808 ----a-w- c:\windows\system32\schannel.dll
2014-07-15 18:58 . 2014-06-05 14:16 1060864 ----a-w- c:\windows\system32\lsasrv.dll
2014-07-15 18:49 . 2014-07-15 18:49 -------- d-----w- C:\70aecd3afafc04fb51
2014-07-15 18:36 . 2014-07-15 18:37 -------- d-----w- c:\program files\CCleaner
2014-06-28 19:25 . 2014-06-28 19:25 -------- d-----w- c:\program files\Common Files\Skype
2014-06-28 18:40 . 2014-03-26 14:27 1389056 ----a-w- c:\windows\system32\msxml6.dll
2014-06-28 18:40 . 2014-03-26 02:13 1236992 ----a-w- c:\windows\system32\msxml3.dll
2014-06-28 18:40 . 2014-03-26 14:25 2048 ----a-w- c:\windows\system32\msxml6r.dll
2014-06-28 18:40 . 2014-03-26 02:10 2048 ----a-w- c:\windows\system32\msxml3r.dll
2014-06-28 18:40 . 2014-04-05 02:16 1310144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-06-28 18:40 . 2014-04-05 02:16 187840 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-28 18:40 . 2014-04-05 02:16 240576 ----a-w- c:\windows\system32\drivers\netio.sys
2014-06-28 18:40 . 2014-04-25 01:58 626688 ----a-w- c:\windows\system32\usp10.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-22 16:13 . 2014-01-27 09:35 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-22 16:13 . 2014-01-27 09:35 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-03 20:05 . 2014-02-18 07:50 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-04-29 642304]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-04-10 7399968]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-05-26 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-05-26 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-05-26 150552]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2012-05-14 86656]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2008-04-29 54784]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-06-18 108032]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2014-01-28 1343400]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-04-30 217088]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-18 243128]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2007-12-11 5120]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-19 01:37 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.254 8.8.8.8
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-07-21 18:01:13
ComboFix-quarantined-files.txt 2014-07-21 16:01
.
Před spuštěním: Volných bajtů: 209 510 649 856
Po spuštění: Volných bajtů: 208 923 500 544
.
- - End Of File - - 5E4FFD80914A0BE01421C136ABC0FF47
A36C5E4F47E84449FF07ED3517B43A31

#30 Příspěvek od **Márty84** » 21 črc 2014 17:26

Nedivil bych se, kdyby v tom mel prsty TuneUp

Presunte ComboFix primo na disk C (takze cesta k nemu bude c:\ComboFix.exe )!

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Folder::
c:\program files\AVG

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte take primo na C (takze cesta k nemu bude c:\CFScript.txt ).
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

VIRY.CZ

Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání

Re: Pomalé načítání