prosím o kontrolu logu

Zpráva

Pavouk1 · #1 Příspěvek od **Pavouk1** » 04 čer 2013 09:25

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ondra at 2013-06-04 10:21:05
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 344 GB (75%) free of 457 GB
Total RAM: 4044 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:21:08, on 4.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\SysWOW64\jmdp\stij.exe
C:\Users\Ondra\AppData\Roaming\WebCake\WebCakeDesktop.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Ondra.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://seznam.cz/?clid=2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: WebCake Layers - {2A5A2A90-3B30-4E6E-A955-2F232C6EF517} - C:\Program Files (x86)\WebCake\WebCakeIEClient.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [WebCake Desktop] "C:\Users\Ondra\AppData\Roaming\WebCake\WebCakeDesktop.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Wireless Audio Manager.lnk = C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20614.www2.hp.com/ediags/gmd/In ... ct1261.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261249~1.132\{c16c1~1\browse~1.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IBUpdaterService - Unknown owner - C:\Windows\system32\dmwu.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WebCake Desktop Updater - WebCake LLC - C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15461 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\AUDIODG.EXE 0x2d4
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
C:\Windows\system32\dmwu.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe" "C:\Users\Ondra\AppData\Roaming\WebCake\WebCakeDesktop.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2456
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000704
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskeng.exe {A1784FFF-ED27-4895-BAF3-2A3D85E92D19}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe"
"C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe"
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe"
"C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\SysWOW64\jmdp\stij.exe"
"C:\Users\Ondra\AppData\Roaming\WebCake\WebCakeDesktop.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe" -m
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
taskeng.exe {8375F143-1B2F-42E6-BB57-7EE0D2988717}
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5128 CREDAT:267521 /prefetch:2
"C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\Macromed\Flash\FlashUtil64_11_7_700_202_ActiveX.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
-Minimized
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {2F334797-ACD0-4C55-A39D-F43A9339FBDB}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-435210660-2472884283-4013427881-10005_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-435210660-2472884283-4013427881-10005 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5128 CREDAT:464227 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5128 CREDAT:2430270 /prefetch:2
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Ondra\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForONDRA-HP$.job
C:\Windows\tasks\HPCeeScheduleForOndra.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default

prefs.js - "browser.startup.homepage" - "http://isearch.brothersoft.com?f=undefined"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=1.2.22]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
websitelogon@truesuite.com
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\extensions\
plugin@getwebcake.com

C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\y163a8n3.default\searchplugins\
SweetIM Search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-17 551840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-05-06 1746760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-17 209824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]
WebCake - C:\Program Files (x86)\WebCake\WebCakeIEClient.dll [2013-05-31 197912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-04-24 462752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-05-06 1598280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-04-24 171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2837288]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-06-08 1128448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"SetDefault"=C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [2011-12-19 44880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2013-04-23 1561968]
""=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-05-07 844168]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-04-19 18678376]
"WebCake Desktop"=C:\Users\Ondra\AppData\Roaming\WebCake\WebCakeDesktop.exe [2013-05-31 47896]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-08 336384]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-04-30 284440]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2013-04-23 311152]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-05-07 345312]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-05 958576]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-09-13 103992]
""= []
"HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2011-08-19 379960]
"HPQuickWebProxy"=C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2012-01-05 169856]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-03-05 578944]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Wireless Audio Manager.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\HPWA.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-06-04 09:52:49 ----D---- C:\rsit
2013-06-04 09:52:49 ----D---- C:\Program Files\trend micro
2013-06-03 21:49:17 ----D---- C:\Program Files (x86)\DOSBox-0.74
2013-06-03 20:50:41 ----D---- C:\dosbox
2013-06-03 20:34:31 ----D---- C:\games
2013-06-03 19:35:48 ----D---- C:\hry 1992
2013-06-03 19:07:22 ----D---- C:\Users\Ondra\AppData\Roaming\dunelegacy
2013-06-03 19:06:18 ----D---- C:\Program Files (x86)\Dune Legacy
2013-06-03 18:47:48 ----D---- C:\Users\Ondra\AppData\Roaming\WebCake
2013-06-03 18:47:48 ----D---- C:\Program Files (x86)\WebCake
2013-06-03 18:47:43 ----D---- C:\ProgramData\Tarma Installer
2013-06-03 18:03:23 ----D---- C:\Program Files (x86)\ZX Games
2013-06-03 11:17:44 ----D---- C:\Program Files (x86)\Lemmings 2 - The Tribes
2013-06-03 11:16:53 ----D---- C:\ProgramData\SweetIM
2013-06-03 11:16:53 ----D---- C:\Program Files (x86)\SweetIM
2013-06-03 11:16:48 ----D---- C:\Windows\SYSWOW64\jmdp
2013-06-03 11:16:48 ----D---- C:\Windows\SYSWOW64\ARFC
2013-06-03 11:16:46 ----D---- C:\Windows\SYSWOW64\WNLT
2013-06-03 11:16:46 ----A---- C:\Windows\system32\ImHttpComm.dll
2013-06-03 11:16:46 ----A---- C:\Windows\system32\dmwu.exe
2013-06-03 11:16:45 ----D---- C:\Program Files (x86)\sweetpacks bundle uninstaller
2013-06-02 21:51:27 ----D---- C:\ProgramData\CyberLink
2013-06-02 21:51:09 ----D---- C:\Users\Ondra\AppData\Roaming\CyberLink
2013-06-02 21:31:43 ----D---- C:\Program Files (x86)\CyberLink
2013-06-02 21:20:50 ----D---- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
2013-06-02 20:37:32 ----D---- C:\Users\Ondra\AppData\Roaming\InstallShield
2013-06-02 20:21:44 ----D---- C:\driver 1
2013-05-31 22:27:23 ----D---- C:\Program Files (x86)\OpenAL
2013-05-31 22:27:23 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2013-05-31 22:27:23 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2013-05-31 22:27:23 ----A---- C:\Windows\system32\wrap_oal.dll
2013-05-31 22:27:23 ----A---- C:\Windows\system32\OpenAL32.dll
2013-05-31 22:27:02 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-05-31 22:27:02 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-05-31 22:25:11 ----D---- C:\Program Files (x86)\Futuremark
2013-05-31 22:23:41 ----D---- C:\Program Files\ATI Technologies
2013-05-31 22:22:35 ----D---- C:\AMD
2013-05-31 21:16:08 ----D---- C:\14
2013-05-31 16:52:49 ----D---- C:\Program Files (x86)\SimCoupe
2013-05-31 16:39:10 ----D---- C:\Program Files (x86)\Spectaculator
2013-05-31 16:35:42 ----D---- C:\Users\Ondra\AppData\Roaming\Spectaculator
2013-05-31 16:34:50 ----D---- C:\Windows\Downloaded Installations
2013-05-30 20:02:43 ----D---- C:\Program Files (x86)\EAGLE-6.4.0
2013-05-30 20:02:37 ----D---- C:\Users\Ondra\AppData\Roaming\CadSoft
2013-05-27 19:16:48 ----D---- C:\Windows\SYSWOW64\searchplugins
2013-05-27 19:16:48 ----D---- C:\Windows\SYSWOW64\Extensions
2013-05-27 12:20:58 ----D---- C:\acer tralmate 2350
2013-05-27 12:04:25 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-05-27 12:04:18 ----HD---- C:\Windows\msdownld.tmp
2013-05-27 12:02:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\url.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-05-27 12:02:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-05-27 12:02:15 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-27 12:02:15 ----A---- C:\Windows\system32\msrating.dll
2013-05-27 12:02:15 ----A---- C:\Windows\system32\iertutil.dll
2013-05-27 12:02:15 ----A---- C:\Windows\system32\elshyph.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\wininet.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\wextract.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\webcheck.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\vbscript.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\urlmon.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\url.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\pngfilt.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\occache.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\msls31.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\mshtmler.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\mshtml.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\mshta.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\msfeedssync.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\licmgr10.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\jscript9.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\jscript.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\inseng.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\imgutil.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iexpress.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ieui.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iesetup.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iernonce.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iepeers.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ieframe.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\iedkcs32.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ieapfltr.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ieapfltr.dat
2013-05-27 12:02:14 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-27 12:02:14 ----A---- C:\Windows\system32\icardie.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\dxtrans.dll
2013-05-27 12:02:14 ----A---- C:\Windows\system32\dxtmsft.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-27 12:00:46 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-27 12:00:46 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-05-27 12:00:46 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-05-27 12:00:46 ----A---- C:\Windows\system32\XpsPrint.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-05-27 12:00:45 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\WMPhoto.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\UIAnimation.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\FntCache.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\dxgi.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\DWrite.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d11.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10warp.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10level9.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10core.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10_1.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d3d10.dll
2013-05-27 12:00:45 ----A---- C:\Windows\system32\d2d1.dll
2013-05-23 10:40:23 ----D---- C:\ProgramData\BrowserProtect
2013-05-23 10:40:03 ----D---- C:\Users\Ondra\AppData\Roaming\Babylon
2013-05-23 10:40:03 ----D---- C:\ProgramData\Babylon
2013-05-23 10:39:58 ----D---- C:\Users\Ondra\AppData\Roaming\OpenCandy
2013-05-23 10:39:58 ----D---- C:\Users\Ondra\AppData\Roaming\DVDVideoSoft
2013-05-23 10:39:58 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-05-23 10:29:16 ----D---- C:\ProgramData\YTD Video Downloader
2013-05-23 10:29:14 ----D---- C:\Program Files (x86)\GreenTree Applications
2013-05-16 19:32:13 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-16 19:32:13 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-16 19:32:02 ----A---- C:\Windows\system32\shell32.dll
2013-05-16 19:32:01 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-16 19:32:01 ----A---- C:\Windows\system32\authui.dll
2013-05-16 19:32:00 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-16 19:32:00 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-16 19:32:00 ----A---- C:\Windows\system32\consent.exe
2013-05-16 19:31:59 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-16 19:31:59 ----A---- C:\Windows\system32\appinfo.dll
2013-05-16 19:31:56 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-16 19:31:56 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-16 19:31:56 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 09:34:37 ----D---- C:\Program Files (x86)\Adobe
2013-05-07 12:51:08 ----D---- C:\videa
2013-05-07 12:02:20 ----A---- C:\Windows\system32\drivers\avnetflt.sys

======List of files/folders modified in the last 1 month======

2013-06-04 10:21:07 ----D---- C:\Windows\Temp
2013-06-04 10:16:13 ----D---- C:\Windows\system32\config
2013-06-04 10:13:27 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2013-06-04 10:11:46 ----A---- C:\Windows\SYSWOW64\log.txt
2013-06-04 10:08:30 ----D---- C:\Windows\system32\Tasks
2013-06-04 09:52:49 ----RD---- C:\Program Files
2013-06-03 21:49:17 ----RD---- C:\Program Files (x86)
2013-06-03 21:21:24 ----SHD---- C:\System Volume Information
2013-06-03 21:10:01 ----HD---- C:\ProgramData
2013-06-03 20:16:12 ----D---- C:\Windows\SysWOW64
2013-06-03 19:48:30 ----D---- C:\Windows\System32
2013-06-03 19:48:30 ----D---- C:\Windows\inf
2013-06-03 19:48:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-06-03 12:07:17 ----D---- C:\Windows
2013-06-03 12:03:18 ----D---- C:\Windows\Downloaded Program Files
2013-06-03 11:17:30 ----SHD---- C:\Windows\Installer
2013-06-03 11:17:21 ----SHD---- C:\Config.Msi
2013-06-03 11:17:02 ----SD---- C:\Users\Ondra\AppData\Roaming\Microsoft
2013-06-03 11:16:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-06-03 11:16:48 ----D---- C:\Windows\system32\catroot
2013-06-03 11:00:07 ----AD---- C:\ProgramData\Temp
2013-06-02 21:54:48 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-06-02 21:40:36 ----D---- C:\Windows\winsxs
2013-06-02 21:28:19 ----D---- C:\Windows\system32\DriverStore
2013-06-02 21:28:18 ----D---- C:\Windows\system32\drivers
2013-06-02 21:27:42 ----D---- C:\SWSetup
2013-06-02 21:27:23 ----D---- C:\ProgramData\Hewlett-Packard
2013-06-02 21:27:20 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-06-02 21:24:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-06-02 21:24:24 ----D---- C:\Windows\Help
2013-06-02 21:22:10 ----RSD---- C:\Windows\assembly
2013-06-02 21:17:46 ----D---- C:\Program Files\Hewlett-Packard
2013-06-02 20:48:38 ----D---- C:\Users\Ondra\AppData\Roaming\hpqLog
2013-06-02 20:48:17 ----D---- C:\Users\Ondra\AppData\Roaming\Hewlett-Packard
2013-06-02 20:37:32 ----D---- C:\Program Files (x86)\Intel
2013-06-02 20:37:01 ----D---- C:\Program Files (x86)\Common Files
2013-06-02 20:32:11 ----D---- C:\driver
2013-06-01 23:51:05 ----D---- C:\2
2013-05-31 22:27:03 ----D---- C:\Windows\Microsoft.NET
2013-05-31 19:44:01 ----D---- C:\Windows\Tasks
2013-05-31 19:38:23 ----D---- C:\Program Files (x86)\Realtek
2013-05-31 19:38:19 ----D---- C:\Windows\system32\catroot2
2013-05-31 19:29:41 ----D---- C:\Users\Ondra\AppData\Roaming\vlc
2013-05-31 16:36:07 ----D---- C:\Windows\Prefetch
2013-05-31 12:16:03 ----D---- C:\Windows\system32\wdi
2013-05-31 11:06:21 ----D---- C:\video
2013-05-27 18:34:26 ----D---- C:\Windows\rescache
2013-05-27 12:07:27 ----D---- C:\Windows\Panther
2013-05-27 12:05:22 ----D---- C:\Program Files\Internet Explorer
2013-05-27 12:05:22 ----D---- C:\Program Files (x86)\Internet Explorer
2013-05-27 12:05:21 ----D---- C:\Windows\SYSWOW64\wbem
2013-05-27 12:05:21 ----D---- C:\Windows\SYSWOW64\migration
2013-05-27 12:05:21 ----D---- C:\Windows\SYSWOW64\el-GR
2013-05-27 12:05:20 ----D---- C:\Windows\SYSWOW64\en-US
2013-05-27 12:05:18 ----D---- C:\Windows\system32\wbem
2013-05-27 12:05:18 ----D---- C:\Windows\system32\migration
2013-05-27 12:05:18 ----D---- C:\Windows\system32\en-US
2013-05-27 12:05:18 ----D---- C:\Windows\system32\el-GR
2013-05-27 12:05:18 ----D---- C:\Windows\PolicyDefinitions
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\it-IT
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\es-ES
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\de-DE
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\da-DK
2013-05-27 12:05:16 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-05-27 12:05:15 ----D---- C:\Windows\system32\zh-TW
2013-05-27 12:05:15 ----D---- C:\Windows\system32\zh-HK
2013-05-27 12:05:15 ----D---- C:\Windows\system32\tr-TR
2013-05-27 12:05:15 ----D---- C:\Windows\system32\sv-SE
2013-05-27 12:05:15 ----D---- C:\Windows\system32\pt-PT
2013-05-27 12:05:15 ----D---- C:\Windows\system32\pt-BR
2013-05-27 12:05:15 ----D---- C:\Windows\system32\pl-PL
2013-05-27 12:05:15 ----D---- C:\Windows\system32\nl-NL
2013-05-27 12:05:15 ----D---- C:\Windows\system32\ko-KR
2013-05-27 12:05:15 ----D---- C:\Windows\system32\it-IT
2013-05-27 12:05:15 ----D---- C:\Windows\system32\hu-HU
2013-05-27 12:05:15 ----D---- C:\Windows\system32\fr-FR
2013-05-27 12:05:15 ----D---- C:\Windows\system32\fi-FI
2013-05-27 12:05:15 ----D---- C:\Windows\system32\es-ES
2013-05-27 12:05:15 ----D---- C:\Windows\system32\de-DE
2013-05-27 12:05:14 ----D---- C:\Windows\system32\zh-CN
2013-05-27 12:05:14 ----D---- C:\Windows\system32\ru-RU
2013-05-27 12:05:14 ----D---- C:\Windows\system32\nb-NO
2013-05-27 12:05:14 ----D---- C:\Windows\system32\ja-JP
2013-05-27 12:05:14 ----D---- C:\Windows\system32\da-DK
2013-05-27 12:05:14 ----D---- C:\Windows\system32\cs-CZ
2013-05-27 12:04:18 ----D---- C:\Windows\Logs
2013-05-24 11:13:45 ----D---- C:\ProgramData\Skype
2013-05-24 11:13:37 ----RD---- C:\Program Files (x86)\Skype
2013-05-16 21:43:02 ----D---- C:\Windows\AppPatch
2013-05-16 20:30:00 ----D---- C:\Windows\debug
2013-05-16 20:29:58 ----A---- C:\Windows\system32\MRT.exe
2013-05-15 09:45:46 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-05-15 09:35:01 ----D---- C:\ProgramData\Adobe
2013-05-07 13:28:43 ----D---- C:\fotky 2012

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-16 834544]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-04-24 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-04-24 28600]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-04-24 100712]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-08-18 9981952]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-08-18 310272]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2011-06-16 133160]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwampfl;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-06-15 620584]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-06-15 165416]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2011-06-15 178728]
R3 BTWDPAN;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\btwdpan.sys [2011-05-21 89640]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-14 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2011-06-15 21544]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-01-24 565352]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-06-08 528384]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 396848]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2013-04-03 38080]
S3 AVerFx2hbtv64;AVerMedia USB SW Hybrid Tuner; C:\Windows\system32\drivers\AVerFx2hbtv64.sys [2012-09-19 691968]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2012-01-19 4729408]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys []
S3 cpuz130;cpuz130; \??\C:\Users\Ondra\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-04-03 103064]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-02-15 335464]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-11 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-11 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-11 740864]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-04-03 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-04-03 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-04-03 188232]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-04-03 158024]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2013-04-03 169288]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2013-04-03 21320]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2013-04-03 188232]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-04-03 203672]
S3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudobex.sys [2013-04-03 203672]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-08-18 204288]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-04-24 110816]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-04-24 86752]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2011-08-19 360448]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-06-17 1083680]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-05-06 263496]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-09-06 197536]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
R2 IBUpdaterService;IBUpdaterService; C:\Windows\system32\dmwu.exe [2013-05-16 1277744]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-02-19 2372096]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-09-28 212944]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-02 326168]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-06-08 301568]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-02 2656280]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WebCake Desktop Updater;WebCake Desktop Updater; C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe [2013-05-31 23552]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-04-19 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15 256904]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-07 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-22 1255736]
S4 BrowserProtect;BrowserProtect; C:\ProgramData\BrowserProtect\2.6.1249.132\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [2013-03-22 2787280]

-----------------EOF-----------------

Pavouk1 · #2 Příspěvek od **Pavouk1** » 04 čer 2013 09:26

info.txt logfile of random's system information tool 1.09 2013-06-04 09:52:56

======Uninstall list======

-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - main\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Gun Bros\Uninstall.exe"
3DMark06-->"C:\Program Files (x86)\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -runfromtemp -l0x0009 -removeonly
Acoustica CD/DVD Label Maker-->C:\Program Files (x86)\Acoustica CD Label Maker\cdlabel.exe UNINSTALL
Adobe Flash Player 11 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_202_ActiveX.exe -maintain activex
Adobe Reader XI (11.0.03) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
Agatha Christie - Peril at End House-->"C:\Program Files (x86)\HP Games\Agatha Christie - Peril at End House\uninstall\uninstaller.exe"
AMD Catalyst Install Manager-->msiexec /q/x{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC} REBOOT=ReallySuppress
Audacity 2.0.2-->"C:\Program Files (x86)\Audacity\unins000.exe"
AuthenTec TrueAPI-->MsiExec.exe /X{054EF02F-95D8-48F4-9EEB-2F9CE3072ED8}
AVerMedia A827 USB TV Tuner 2.1.64.159-->C:\Program Files (x86)\AVerMedia\AVerMedia A827 USB TV Tuner\uninst.exe
AVerMedia Media Center Plug-ins 2.0.16.0-->C:\Program Files (x86)\AVerMedia\AVerMedia Media Center Plug-ins\uninst.exe
AVerTV 3D-->C:\Program Files (x86)\InstallShield Installation Information\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}\setup.exe -runfromtemp -l0x0405
Avira Free Antivirus-->C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe /REMOVE
AviSynth 2.5-->"C:\Program Files (x86)\AviSynth 2.5\Uninstall.exe"
Bejeweled 3-->"C:\Program Files (x86)\HP Games\Bejeweled 3\uninstall\uninstaller.exe"
Bing Bar-->MsiExec.exe /X{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}
Blackhawk Striker 2-->"C:\Program Files (x86)\HP Games\Blackhawk Striker 2\uninstall\uninstaller.exe"
Blasterball 3-->"C:\Program Files (x86)\HP Games\Blasterball 3\uninstall\uninstaller.exe"
Bounce Symphony-->"C:\Program Files (x86)\HP Games\Bounce Symphony\uninstall\uninstaller.exe"
Broadcom 802.11 Wireless LAN Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver" driver
Broadcom Bluetooth Software-->MsiExec.exe /X{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}
Broadcom InConcert Maestro-->MsiExec.exe /X{57DD35E9-D9BB-4089-BB05-EF933C586CB3}
BrowserProtect-->"C:\ProgramData\BrowserProtect\2.6.1249.132\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe" /Uninstall /{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} /su=3a3d34e78b836f2b /um
Cake Mania-->"C:\Program Files (x86)\HP Games\Cake Mania\uninstall\uninstaller.exe"
Canon My Printer-->"C:\Program Files\Canon\MyPrinter\uninst.exe" /UninstallRemove C:\Program Files\Canon\MyPrinter\uninst.ini
Catalyst Control Center - Branding-->MsiExec.exe /I{949D6B51-10E8-4CD4-A81E-064E38240415}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Cradle of Rome 2-->"C:\Program Files (x86)\HP Games\Cradle of Rome 2\uninstall\uninstaller.exe"
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Dune Legacy-->"C:\Program Files (x86)\Dune Legacy\uninstall.exe"
DVD Shrink 3.2-->"C:\Program Files (x86)\DVD Shrink\unins000.exe"
DVDx 4.0 Open Edition-->C:\Program Files (x86)\DVDx 4.0 Open Edition\UninstallOpenEdition.exe
DVR-Studio HD 2-->MsiExec.exe /I{17C6C714-8608-4A6C-A54A-4B63AED67BAF}
EAGLE 6.4.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files (x86)\EAGLE-6.4.0\bin\uninstall.bat" C:\Program Files (x86)\EAGLE-6.4.0\bin
ESU for Microsoft Windows 7 SP1-->MsiExec.exe /I{B18BEB15-A9DA-43D7-BAE1-C6C67484C2C0}
ESU for Microsoft Windows 7 SP1-->MsiExec.exe /I{E96CAA2A-0244-4A2A-8403-0C3C9534778B}
Evernote v. 4.2.3-->MsiExec.exe /X{F761359C-9CED-45AE-9A51-9D6605CD55C4}
Farm Frenzy-->"C:\Program Files (x86)\HP Games\Farm Frenzy\uninstall\uninstaller.exe"
FATE-->"C:\Program Files (x86)\HP Games\FATE\uninstall\uninstaller.exe"
Final Drive: Nitro-->"C:\Program Files (x86)\HP Games\Final Drive Nitro\uninstall\uninstaller.exe"
Formix SE - formuláře kanceláře-->"C:\Program Files (x86)\Formix SE\unins000.exe"
Fotogalerie-->MsiExec.exe /X{A1FBD2B3-6768-472D-BA46-C00EACBCE16C}
Free Video Converter 4.6.8-->"C:\Program Files (x86)\Free Video Converter\unins001.exe"
Free YouTube Download version 3.2.2.430-->C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe
Free YouTube to MP3 Converter version 3.12.2.430-->C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe
Freemake Video Converter verzia 3.2.1-->"C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe"
Futuremark SystemInfo-->"C:\Program Files (x86)\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe" -runfromtemp -l0x0009 -removeonly
GIMP 2.8.2-->"C:\Program Files\GIMP 2\uninst\unins000.exe"
Governor of Poker 2 Premium Edition-->"C:\Program Files (x86)\HP Games\Governor of Poker 2 Premium Edition\uninstall\uninstaller.exe"
Hewlett-Packard ACLM.NET v1.2.1.1-->MsiExec.exe /I{6F340107-F9AA-47C6-B54C-C3A19F11553F}
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B6E073B9-F238-379A-AA45-D323CD308DAE} /parameterfolder Client
HP Auto-->MsiExec.exe /I{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
HP Client Services-->MsiExec.exe /I{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
HP Connection Manager-->MsiExec.exe /X{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP Documentation-->MsiExec.exe /X{DE15C5EC-7C30-44BF-ACEB-03960FC5601D}
HP Games-->"C:\Program Files (x86)\HP Games\Uninstall.exe"
HP Launch Box-->MsiExec.exe /I{5A847522-375C-4D05-BD3D-88C450CC047F}
HP On Screen Display-->MsiExec.exe /I{ED1BD69A-07E3-418C-91F1-D856582581BF}
HP Power Manager-->MsiExec.exe /I{7E799992-5DA0-4A1A-9443-B1836B063FEC}
HP Product Detection-->MsiExec.exe /I{A34CC51D-C2FF-4E0E-9F27-28B0249A15DD}
HP Quick Launch-->MsiExec.exe /I{53B17A98-5BF0-40BC-AAFF-850A357975AC}
HP QuickWeb-->MsiExec.exe /X{A0C87B5A-9DC7-4C24-9B19-28282DBE6493}
HP Setup Manager-->MsiExec.exe /I{AE856388-AFAD-4753-81DF-D96B19D0A17C}
HP Setup-->MsiExec.exe /X{5036764A-435D-40C9-869C-31085A3D741D}
HP SimplePass PE 2011-->MsiExec.exe /X{31CEFF4E-B6D1-46A5-9169-7C67570E7FFA}
HP Software Framework-->MsiExec.exe /X{03619AEC-00EE-43CB-9F4F-25BE4C8C90D2}
HP Support Assistant-->"C:\Program Files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Wireless Audio Manager 1.2.3-->C:\Program Files (x86)\Hewlett-Packard\HP Wireless Audio\uninst.exe
Chronicles of Albian-->"C:\Program Files (x86)\HP Games\Chronicles of Albian\uninstall\uninstaller.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\HP Games\Chuzzle Deluxe\uninstall\uninstaller.exe"
IDT Audio-->"C:\Program Files (x86)\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly
Intel(R) Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Display Audio Driver-->C:\Program Files (x86)\Intel\Intel(R) Display Audio Driver\Uninstall\setup.exe -uninstall
Intel(R) Identity Protection Technology 1.2.22.0-->MsiExec.exe /X{387B63A5-5016-1015-B06B-A9A1030E3125}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Internet Explorer Toolbar 4.8 by SweetPacks-->MsiExec.exe /X{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
Java 7 Update 17 (64-bit)-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F86417017FF}
Java 7 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217021FF}
Jewel Quest: The Sleepless Star - Collector's Edition-->"C:\Program Files (x86)\HP Games\Jewel Quest The Sleepless Star - Collectors Edition\uninstall\uninstaller.exe"
Junk Mail filter update-->MsiExec.exe /I{400C31E4-796F-4E86-8FDC-C3C4FACC6847}
Lemmings 2 - The Tribes-->"C:\Program Files (x86)\Lemmings 2 - The Tribes\unins000.exe"
LibreOffice 4.0.0.3-->MsiExec.exe /I{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}
Mah Jong Medley-->"C:\Program Files (x86)\HP Games\Mah Jong Medley\uninstall\uninstaller.exe"
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{90850405-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319-->MsiExec.exe /X{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Movie Maker-->MsiExec.exe /X{5BABDA39-61CF-41EE-992D-4054B6649A9B}
Movie Maker-->MsiExec.exe /X{A035950F-15BA-41C0-9D8F-165FC0536012}
Movie Maker-->MsiExec.exe /X{ED6C77F9-4D7E-447C-9EC0-9A212D075535}
Mozilla Firefox 19.0.2 (x86 cs)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSVCRT110_amd64-->MsiExec.exe /I{E9FA781F-3E80-4399-825A-AD3E11C28C77}
MSVCRT110-->MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
Mystery of Mortlake Mansion-->"C:\Program Files (x86)\HP Games\Mystery of Mortlake Mansion\uninstall\uninstaller.exe"
Namco All-Stars: PAC-MAN-->"C:\Program Files (x86)\HP Games\Namco All-Stars PAC-MAN\uninstall\uninstaller.exe"
OpenAL-->"C:\Program Files (x86)\OpenAL\OpenALwEAX.exe" /U
Penguins!-->"C:\Program Files (x86)\HP Games\Penguins!\uninstall\uninstaller.exe"
Photo Common-->MsiExec.exe /X{D888F114-7537-4D48-AF03-5DA9C82D7540}
Photo Common-->MsiExec.exe /X{EB91007A-0110-42A6-B869-2709955A9B2A}
Photo Gallery-->MsiExec.exe /X{30F99474-EBE3-4134-A02B-F6CD38CFE243}
Photo Gallery-->MsiExec.exe /X{FC6C7107-7D72-41A1-A031-3CE751159BAB}
Photo Story 3 pro Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\HP Games\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
PlayReady PC Runtime amd64-->MsiExec.exe /X{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
Poker Superstars III-->"C:\Program Files (x86)\HP Games\Poker Superstars III\uninstall\uninstaller.exe"
Polar Bowler-->"C:\Program Files (x86)\HP Games\Polar Bowler\uninstall\uninstaller.exe"
Polar Golfer-->"C:\Program Files (x86)\HP Games\Polar Golfer\uninstall\uninstaller.exe"
Pošta a kancelář 3.9-->"C:\Program Files (x86)\Pošta 3\unins000.exe"
Puzznic 1.5-->"C:\Program Files (x86)\ZX Games\Puzznic\unins000.exe"
Readon TV Movie Radio Player 7.6.0.0-->MsiExec.exe /I{80074966-5231-428D-9AE7-B7D5D2DC3246}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Realtek PCIE Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{C1594429-8296-4652-BF54-9DBE4932A44C}\setup.exe" -runfromtemp -removeonly
Recovery Manager-->MsiExec.exe /I{DBCD5E64-7379-4648-9444-8A6558DCB614}
Samsung Kies-->"C:\Program Files (x86)\InstallShield Installation Information\{758C8301-2696-4855-AF45-534B1200980A}\setup.exe" -runfromtemp -l0x0409 -removeonly
Samsung Kies-->MsiExec.exe /I{758C8301-2696-4855-AF45-534B1200980A}
SAMSUNG USB Driver for Mobile Phones-->C:\Program Files (x86)\Samsung\USB Drivers\Uninstall.exe
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {6AF6C62E-4E3D-33BF-A591-9E4D53BDF22F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4736E989-32D9-3B91-90D7-C68848E118CA} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F1696E2F-4803-362F-A756-65B363483FE6} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C8B8456C-6A12-3725-95A8-1C9FBE1E3141} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8E6848A1-B790-34FE-921A-A5319258E254} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E7F6B64E-E11F-3D1C-868D-3F1443DA5A15} /parameterfolder Client
SimCoupe-->"C:\Program Files (x86)\SimCoupe\uninstall.exe"
Skiny programu Pošta a kancelář-->"C:\Program Files (x86)\Pošta 3\unins001.exe"
Skype™ 6.3-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
Slingo Supreme-->"C:\Program Files (x86)\HP Games\Slingo Supreme\uninstall\uninstaller.exe"
Spectaculator 8.0-->MsiExec.exe /I{B21AE9DA-E837-4F82-B061-7848B4F3096B}
SweetIM Bundle by SweetPacks-->"C:\Program Files (x86)\sweetpacks bundle uninstaller\uninstaller.exe" "/appName=SweetIM Bundle by SweetPacks" "/linkurl=http://lp.sweetim.com/SweetPacksBundleUninstaller" "/sweettext=SweetIM (SweetIM for Messenger, Toolbar, Update Manager)"
SweetIM for Messenger 3.7-->MsiExec.exe /X{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
SweetPacks Updater-->"C:\Windows\SysWOW64\WNLT\Installation\uninstaller.exe"
Synaptics TouchPad Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TMPGEnc Authoring Works 5 Premium Theme Pack 1-->MsiExec.exe /I{5D314FE3-3D51-4C46-9514-8B0A28F7AF77}
TMPGEnc Authoring Works 5 Theme Pack 1-->MsiExec.exe /I{929EAD99-9874-43BF-B3F4-5F5D2D9D66A9}
TMPGEnc Authoring Works 5 Theme Pack 2-->MsiExec.exe /I{5ECF915E-710A-441E-A7CB-1E599A61D34F}
TMPGEnc Authoring Works 5 Theme Pack 3-->MsiExec.exe /I{504C5775-4DD4-40A6-84EA-2837EBC5D268}
TMPGEnc Authoring Works 5 Theme Pack 4-->MsiExec.exe /I{081872FE-8932-42E9-B3CE-CE85C477790E}
TMPGEnc Authoring Works 5-->MsiExec.exe /I{3B2A7C83-EFAE-4FC1-BF6B-500042E8B17A}
Total Commander 64-bit (Remove or Repair)-->c:\totalcmd\tcunin64.exe
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {29C7BE97-DE59-37A2-A687-2ADD5321948A} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7D799A81-5661-3159-BF92-754161CED6E6} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4DFA8287-EA36-3469-99FE-F568FEC81653} /parameterfolder Client
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
Vacation Quest - The Hawaiian Islands-->"C:\Program Files (x86)\HP Games\Vacation Quest - The Hawaiian Islands\uninstall\uninstaller.exe"
VIP Access SDK (1.1.0.4) -->C:\Program Files\Symantec\VIP Access SDK\uninstall.exe
Virtual Villagers 5 - New Believers-->"C:\Program Files (x86)\HP Games\Virtual Villagers 5 - New Believers\uninstall\uninstaller.exe"
VLC media player 2.0.3-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WebCake 3.00-->C:\PROGRA~3\TARMAI~1\{C4ED7~1\Setup.exe /remove /q0
WildTangent Games App (HP Games)-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\hp\Uninstall.exe"
Windows Live Communications Platform-->MsiExec.exe /I{0454BB9A-2A7A-4214-BDFF-937F7A711A44}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{17F99FCE-8F03-4439-860A-25C5A5434E18}
Windows Live Essentials-->MsiExec.exe /I{797DC296-ADC5-4A08-8CBC-AEB0D6F4B249}
Windows Live Essentials-->MsiExec.exe /I{C034A6F9-6569-491B-B3BF-F5D15221A708}
Windows Live Family Safety-->MsiExec.exe /I{7B0C5EF6-DE4C-4E20-8889-C17604FFE5CD}
Windows Live Family Safety-->MsiExec.exe /I{95D78710-DEE9-4577-9FC6-35BE431898DC}
Windows Live Family Safety-->MsiExec.exe /X{5F611ADA-B98C-4DBB-ADDE-414F08457ECF}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{CE52672C-A0E9-4450-8875-88A221D5CD50}
Windows Live Installer-->MsiExec.exe /I{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}
Windows Live Mail-->MsiExec.exe /I{00476F3E-3C4D-4E02-B8BB-125350157EB9}
Windows Live Mail-->MsiExec.exe /I{70854FE6-3BF1-4C69-94D0-BEB821102E34}
Windows Live Mail-->MsiExec.exe /I{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}
Windows Live Mail-->MsiExec.exe /I{B80D3EA9-A252-4AE5-AC51-81729F5C586F}
Windows Live Messenger-->MsiExec.exe /X{0A9256E0-C924-46DE-921B-F6C4548A1C64}
Windows Live Messenger-->MsiExec.exe /X{1EA7C505-E6DA-4B85-9432-EBD3C70D510D}
Windows Live Messenger-->MsiExec.exe /X{66DB6D91-BF91-480B-933D-7CB8B1E64D74}
Windows Live Messenger-->MsiExec.exe /X{F2235E5E-7881-4293-9B6F-04B2609FBFF0}
Windows Live MIME IFilter-->MsiExec.exe /I{F6822EFD-3F7D-4B35-8845-757A26AEC8E2}
Windows Live Movie Maker-->MsiExec.exe /X{BF022D76-9F72-4203-B8FA-6522DC66DFDA}
Windows Live Photo Common-->MsiExec.exe /X{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}
Windows Live Photo Common-->MsiExec.exe /X{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}
Windows Live PIMT Platform-->MsiExec.exe /I{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}
Windows Live SOXE Definitions-->MsiExec.exe /I{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}
Windows Live SOXE-->MsiExec.exe /I{FE7C0B3D-50B9-4951-BE78-A321CBF86552}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{18272881-CFC0-434D-A975-E5BE44206AA0}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{E18F981B-401C-4D90-BC57-D8903564D558}
Windows Live UX Platform-->MsiExec.exe /I{4CCBD1F4-CEEC-452A-9CB8-46564B501315}
Windows Live Writer Resources-->MsiExec.exe /X{23A3E560-069F-4CFC-8F6C-1B526EC735FC}
Windows Live Writer Resources-->MsiExec.exe /X{3A9ECD64-DE00-4779-A89E-C878513B2B37}
Windows Live Writer Resources-->MsiExec.exe /X{C29FC15D-E84B-4EEC-8505-4DED94414C59}
Windows Live Writer-->MsiExec.exe /X{42B6C7E0-0DAE-488D-8DAF-838898102F19}
Windows Live Writer-->MsiExec.exe /X{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}
Windows Live Writer-->MsiExec.exe /X{86C40513-B5A4-476E-9EAB-EC118DCF4502}
Windows Live Writer-->MsiExec.exe /X{97C79BEC-43F7-4BD8-A6A7-85C0257E488A}
Windows Live Writer-->MsiExec.exe /X{D2C146B1-948D-47EF-8387-5D1C6B980F7C}
Windows Mobile Device Center-->MsiExec.exe /X{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}
WinRAR-->C:\Program Files (x86)\WinRAR\uninstall.exe
YTD Video Downloader 4.1-->"C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\uninstall.exe"
Zuma Deluxe-->"C:\Program Files (x86)\HP Games\Zuma Deluxe\uninstall\uninstaller.exe"
Συλλογή φωτογραφιών του Windows Live-->MsiExec.exe /X{C00C2A91-6CB3-483F-80B3-2958E29468F1}

======System event log======

Computer Name: Ondra-HP
Event Code: 7030
Message: The AVerRemote service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Record Number: 4696
Source Name: Service Control Manager
Time Written: 20130122181015.285103-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 1014
Message: Name resolution for the name _ldap._tcp.dc._msdcs.jurova.sit.net timed out after none of the configured DNS servers responded.
Record Number: 4601
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20130122165304.192100-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: Ondra-HP
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 4511
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20130122165130.523701-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Ondra-HP
Event Code: 1014
Message: Name resolution for the name _ldap._tcp.dc._msdcs.jurova.sit.net timed out after none of the configured DNS servers responded.
Record Number: 4302
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20130122163050.867147-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: Ondra-HP
Event Code: 877
Message: There was error [DATABASE OPEN FAILED] processing the driver database.
Record Number: 4188
Source Name: Application Popup
Time Written: 20130122162743.005952-000
Event Type: Error
User:

=====Application event log=====

Computer Name: Ondra-HP
Event Code: 1000
Message: Faulting application name: HPWMISVC.exe, version: 2.3.1.0, time stamp: 0x4d9e7ce7
Faulting module name: HPWMISVC.exe, version: 2.3.1.0, time stamp: 0x4d9e7ce7
Exception code: 0xc0000005
Fault offset: 0x000016d1
Faulting process id: 0x738
Faulting application start time: 0x01cdf8ac803d93d3
Faulting application path: C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
Faulting module path: C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
Report Id: 0627aa1e-64a9-11e2-9932-3859f9ed0a6f
Record Number: 2015
Source Name: Application Error
Time Written: 20130122153310.000000-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 4107
Message: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/m ... ootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
Record Number: 1996
Source Name: Microsoft-Windows-CAPI2
Time Written: 20130122153146.788413-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 4107
Message: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/m ... ootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
Record Number: 1701
Source Name: Microsoft-Windows-CAPI2
Time Written: 20130122142911.043171-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 4107
Message: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/m ... ootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.
Record Number: 1696
Source Name: Microsoft-Windows-CAPI2
Time Written: 20130122142848.572116-000
Event Type: Error
User:

Computer Name: Ondra-HP
Event Code: 3086
Message: The system locale has changed. Existing data will be deleted and the index must be recreated.

Context: Application, SystemIndex Catalog

Record Number: 1688
Source Name: Microsoft-Windows-Search
Time Written: 20130122142836.000000-000
Event Type: Warning
User:

=====Security event log=====

Computer Name: Ondra-HP
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 842
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130122142912.950280-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: ONDRA-HP$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x2d4
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 841
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130122142912.950280-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 840
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130122142835.499293-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: ONDRA-HP$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x2d4
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 839
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130122142835.499293-000
Event Type: Audit Success
User:

Computer Name: Ondra-HP
Event Code: 1102
Message: The audit log was cleared.
Subject:
Security ID: S-1-5-21-435210660-2472884283-4013427881-1000
Account Name: Ondra
Domain Name: Ondra-HP
Logon ID: 0x2b0c7
Record Number: 838
Source Name: Microsoft-Windows-Eventlog
Time Written: 20130122142822.800871-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\HP SimplePass 2011\;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files\Broadcom\WHL\;C:\Program Files\Broadcom\WHL\syswow64;C:\Program Files\Broadcom\WHL\SysWow64\;C:\Program Files\Broadcom\WHL\SysWow64\syswow64;C:\Program Files (x86)\Intel\Services\IPT\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=2a07
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
"OnlineServices"=Online Services
"Platform"=MCD
"PCBRAND"=Pavilion

-----------------EOF-----------------

#3 Příspěvek od **vyosek** » 04 čer 2013 21:04

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Prohledat
Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

Provedte aktualizaci
Provedte uplny sken - nic nemazte
MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

VIRY.CZ

prosím o kontrolu logu

prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu