Prosím o kontrolu logu, celé zle..
- Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
a log z hjt po fixu?
Láska hřeje, ale uhlí je uhlí.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.

Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Re: Prosím o kontrolu logu, celé zle..
HJT log
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:05, on 15. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Lančin\Desktop\HiJackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.olmici.cz/hry-olmici
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHJE.EXE /EPT "EPLTarget\P0000000000000000" /M "Epson Stylus SX130" /EF "HKCU"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Orezávač obrazovky a spúšťač programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Epson Redirect Agent (ENAgent) - SEIKO EPSON CORPORATION - C:\Windows\system32\ENAgent.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe
--
End of file - 6261 bytes
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:05, on 15. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Lančin\Desktop\HiJackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.olmici.cz/hry-olmici
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHJE.EXE /EPT "EPLTarget\P0000000000000000" /M "Epson Stylus SX130" /EF "HKCU"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Orezávač obrazovky a spúšťač programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Epson Redirect Agent (ENAgent) - SEIKO EPSON CORPORATION - C:\Windows\system32\ENAgent.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe
--
End of file - 6261 bytes
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu, celé zle..
Ahoj,
problémy s načítavaním stránok, hrozne pomaly, až príliš. Inak ostatné OK.
problémy s načítavaním stránok, hrozne pomaly, až príliš. Inak ostatné OK.
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
Stáhni si Memtest:
Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..
Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..
Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu, celé zle..
Memtest: ukázal po 2hodinách 0errors...
CrystalDiskInfo log
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x86)
Date : 2014/12/25 10:55:12
-- Controller Map ----------------------------------------------------------
+ Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0 [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVDRAM GH22NS70 ATA Device
+ ATA Channel 1 (1)
- Hitachi HDS721050CLA362 ATA Device
-- Disk List ---------------------------------------------------------------
(1) Hitachi HDS721050CLA362 : 500,1 GB [0/1/0, pd1]
----------------------------------------------------------------------------
(1) Hitachi HDS721050CLA362
----------------------------------------------------------------------------
Model : Hitachi HDS721050CLA362
Firmware : JP2OA50E
Serial Number : JP1572JE017KYK
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 14111 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 23925 hours
Power On Count : 2721 count
Temperature : 53 C (127 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _16 000000000000 Read Error Rate
02 136 136 _54 00000000005D Throughput Performance
03 137 137 _24 0003009800B6 Spin-Up Time
04 100 100 __0 000000000AAC Start/Stop Count
05 100 100 __5 000000000000 Reallocated Sectors Count
07 100 100 _67 000000000000 Seek Error Rate
08 142 142 _20 00000000001D Seek Time Performance
09 _97 _97 __0 000000005D75 Power-On Hours
0A 100 100 _60 000000000000 Spin Retry Count
0C 100 100 __0 000000000AA1 Power Cycle Count
C0 _98 _98 __0 000000000ABD Power-off Retract Count
C1 _98 _98 __0 000000000ABD Load/Unload Cycle Count
C2 113 113 __0 003F00140035 Temperature
C4 100 100 __0 000000000000 Reallocation Event Count
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A50 3135 3732 4A45 3031 374B 594B
020: 0003 6E3F 0038 4A50 324F 4135 3045 4869 7461 6368
030: 6920 4844 5337 3231 3035 3043 4C41 3336 3220 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 0040
080: 01FC 0029 346B 7D69 4773 3469 BC41 4763 207F 0036
090: 0000 0000 FFFE 0000 0000 0008 00CA 00F9 2710 0000
100: 6030 3A38 0000 0000 00CA 0000 0000 5A87 5000 CCA3
110: 97C0 90D2 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 2180 0DF1 FA00 0001 4000 0404 026A 0000
140: 0000 0706 0906 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 514E 4235 0000 4802 0000 5DBD 47D3 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 87A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 88 88 5D 00 00 00 00 00 00 03 07 00 89 89 B6
020: 00 98 00 03 00 00 04 12 00 64 64 AC 0A 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 8E 8E 1D
050: 00 00 00 00 00 00 09 12 00 61 61 75 5D 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 A1 0A 00 00 00 00 00 C0 32 00 62 62 BD
080: 0A 00 00 00 00 00 C1 12 00 62 62 BD 0A 00 00 00
090: 00 00 C2 02 00 71 71 35 00 14 00 3F 00 00 C4 32
0A0: 00 64 64 00 00 00 00 00 00 00 C5 22 00 64 64 00
0B0: 00 00 00 00 00 00 C6 08 00 64 64 00 00 00 00 00
0C0: 00 00 C7 0A 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 FD 12 01 5B
170: 03 00 01 00 01 51 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 90
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 10 00 00 00 00 00 00 00 00 00 00 02 36
010: 00 00 00 00 00 00 00 00 00 00 03 18 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 14 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64
CrystalDiskInfo log
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x86)
Date : 2014/12/25 10:55:12
-- Controller Map ----------------------------------------------------------
+ Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0 [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVDRAM GH22NS70 ATA Device
+ ATA Channel 1 (1)
- Hitachi HDS721050CLA362 ATA Device
-- Disk List ---------------------------------------------------------------
(1) Hitachi HDS721050CLA362 : 500,1 GB [0/1/0, pd1]
----------------------------------------------------------------------------
(1) Hitachi HDS721050CLA362
----------------------------------------------------------------------------
Model : Hitachi HDS721050CLA362
Firmware : JP2OA50E
Serial Number : JP1572JE017KYK
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 14111 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 23925 hours
Power On Count : 2721 count
Temperature : 53 C (127 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _16 000000000000 Read Error Rate
02 136 136 _54 00000000005D Throughput Performance
03 137 137 _24 0003009800B6 Spin-Up Time
04 100 100 __0 000000000AAC Start/Stop Count
05 100 100 __5 000000000000 Reallocated Sectors Count
07 100 100 _67 000000000000 Seek Error Rate
08 142 142 _20 00000000001D Seek Time Performance
09 _97 _97 __0 000000005D75 Power-On Hours
0A 100 100 _60 000000000000 Spin Retry Count
0C 100 100 __0 000000000AA1 Power Cycle Count
C0 _98 _98 __0 000000000ABD Power-off Retract Count
C1 _98 _98 __0 000000000ABD Load/Unload Cycle Count
C2 113 113 __0 003F00140035 Temperature
C4 100 100 __0 000000000000 Reallocation Event Count
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A50 3135 3732 4A45 3031 374B 594B
020: 0003 6E3F 0038 4A50 324F 4135 3045 4869 7461 6368
030: 6920 4844 5337 3231 3035 3043 4C41 3336 3220 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 0040
080: 01FC 0029 346B 7D69 4773 3469 BC41 4763 207F 0036
090: 0000 0000 FFFE 0000 0000 0008 00CA 00F9 2710 0000
100: 6030 3A38 0000 0000 00CA 0000 0000 5A87 5000 CCA3
110: 97C0 90D2 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 2180 0DF1 FA00 0001 4000 0404 026A 0000
140: 0000 0706 0906 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 514E 4235 0000 4802 0000 5DBD 47D3 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 87A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 88 88 5D 00 00 00 00 00 00 03 07 00 89 89 B6
020: 00 98 00 03 00 00 04 12 00 64 64 AC 0A 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 8E 8E 1D
050: 00 00 00 00 00 00 09 12 00 61 61 75 5D 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 A1 0A 00 00 00 00 00 C0 32 00 62 62 BD
080: 0A 00 00 00 00 00 C1 12 00 62 62 BD 0A 00 00 00
090: 00 00 C2 02 00 71 71 35 00 14 00 3F 00 00 C4 32
0A0: 00 64 64 00 00 00 00 00 00 00 C5 22 00 64 64 00
0B0: 00 00 00 00 00 00 C6 08 00 64 64 00 00 00 00 00
0C0: 00 00 C7 0A 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 FD 12 01 5B
170: 03 00 01 00 01 51 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 90
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 10 00 00 00 00 00 00 00 00 00 00 02 36
010: 00 00 00 00 00 00 00 00 00 00 03 18 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 14 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
Disk víc chladit!
0003009800B6 Spin-Up Time
Spin Up Time
Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.
Udělej CDI znovu
0003009800B6 Spin-Up Time
Spin Up Time
Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.
Udělej CDI znovu
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu, celé zle..
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x86)
Date : 2014/12/25 17:18:07
-- Controller Map ----------------------------------------------------------
+ Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0 [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVDRAM GH22NS70 ATA Device
+ ATA Channel 1 (1)
- Hitachi HDS721050CLA362 ATA Device
-- Disk List ---------------------------------------------------------------
(1) Hitachi HDS721050CLA362 : 500,1 GB [0/1/0, pd1]
----------------------------------------------------------------------------
(1) Hitachi HDS721050CLA362
----------------------------------------------------------------------------
Model : Hitachi HDS721050CLA362
Firmware : JP2OA50E
Serial Number : JP1572JE017KYK
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 14111 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 23931 hod.
Power On Count : 2721 krát
Temperature : 50 C (122 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _16 000000000000 Počet chybných čítaní
02 136 136 _54 00000000005D Priechodnosť disku
03 137 137 _24 0003009800B6 Čas na roztočenie platní
04 100 100 __0 000000000AAC Počet spustení/zastavení
05 100 100 __5 000000000000 Počet premapovaných sektorov
07 100 100 _67 000000000000 Počet chybných vyhľadávaní
08 142 142 _20 00000000001D Čas potrebný na vyhľadanie
09 _97 _97 __0 000000005D7B Počet odpracovaných hodín
0A 100 100 _60 000000000000 Počet opakovaných pokusov o roztočenie platní
0C 100 100 __0 000000000AA1 Počet cyklov zapnutia zariadenia
C0 _98 _98 __0 000000000ABD Počet vypnutí disku
C1 _98 _98 __0 000000000ABD Počet cyklov načítania/vymazania
C2 120 120 __0 003F00140032 Teplota
C4 100 100 __0 000000000000 Počet udalostí s cieľom realokovania sektorov
C5 100 100 __0 000000000000 Počet podozrivých sektorov
C6 100 100 __0 000000000000 Počet neopraviteľných sektorov
C7 200 200 __0 000000000000 Počet chýb v kontrolnom súčte UltraDMA
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A50 3135 3732 4A45 3031 374B 594B
020: 0003 6E3F 0038 4A50 324F 4135 3045 4869 7461 6368
030: 6920 4844 5337 3231 3035 3043 4C41 3336 3220 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 0040
080: 01FC 0029 346B 7D69 4773 3469 BC41 4763 207F 0036
090: 0000 0000 FFFE 0000 0000 0008 00CA 00F9 2710 0000
100: 6030 3A38 0000 0000 00CA 0000 0000 5A87 5000 CCA3
110: 97C0 90D2 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 2180 0DF1 FA00 0001 4000 0404 026A 0000
140: 0000 0706 0906 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 514E 4235 0000 4802 0000 5DBD 47D3 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 87A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 88 88 5D 00 00 00 00 00 00 03 07 00 89 89 B6
020: 00 98 00 03 00 00 04 12 00 64 64 AC 0A 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 8E 8E 1D
050: 00 00 00 00 00 00 09 12 00 61 61 7B 5D 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 A1 0A 00 00 00 00 00 C0 32 00 62 62 BD
080: 0A 00 00 00 00 00 C1 12 00 62 62 BD 0A 00 00 00
090: 00 00 C2 02 00 78 78 32 00 14 00 3F 00 00 C4 32
0A0: 00 64 64 00 00 00 00 00 00 00 C5 22 00 64 64 00
0B0: 00 00 00 00 00 00 C6 08 00 64 64 00 00 00 00 00
0C0: 00 00 C7 0A 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 FD 12 01 5B
170: 03 00 01 00 01 51 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7F
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 10 00 00 00 00 00 00 00 00 00 00 02 36
010: 00 00 00 00 00 00 00 00 00 00 03 18 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 14 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x86)
Date : 2014/12/25 17:18:07
-- Controller Map ----------------------------------------------------------
+ Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0 [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVDRAM GH22NS70 ATA Device
+ ATA Channel 1 (1)
- Hitachi HDS721050CLA362 ATA Device
-- Disk List ---------------------------------------------------------------
(1) Hitachi HDS721050CLA362 : 500,1 GB [0/1/0, pd1]
----------------------------------------------------------------------------
(1) Hitachi HDS721050CLA362
----------------------------------------------------------------------------
Model : Hitachi HDS721050CLA362
Firmware : JP2OA50E
Serial Number : JP1572JE017KYK
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 14111 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 23931 hod.
Power On Count : 2721 krát
Temperature : 50 C (122 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _16 000000000000 Počet chybných čítaní
02 136 136 _54 00000000005D Priechodnosť disku
03 137 137 _24 0003009800B6 Čas na roztočenie platní
04 100 100 __0 000000000AAC Počet spustení/zastavení
05 100 100 __5 000000000000 Počet premapovaných sektorov
07 100 100 _67 000000000000 Počet chybných vyhľadávaní
08 142 142 _20 00000000001D Čas potrebný na vyhľadanie
09 _97 _97 __0 000000005D7B Počet odpracovaných hodín
0A 100 100 _60 000000000000 Počet opakovaných pokusov o roztočenie platní
0C 100 100 __0 000000000AA1 Počet cyklov zapnutia zariadenia
C0 _98 _98 __0 000000000ABD Počet vypnutí disku
C1 _98 _98 __0 000000000ABD Počet cyklov načítania/vymazania
C2 120 120 __0 003F00140032 Teplota
C4 100 100 __0 000000000000 Počet udalostí s cieľom realokovania sektorov
C5 100 100 __0 000000000000 Počet podozrivých sektorov
C6 100 100 __0 000000000000 Počet neopraviteľných sektorov
C7 200 200 __0 000000000000 Počet chýb v kontrolnom súčte UltraDMA
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 4A50 3135 3732 4A45 3031 374B 594B
020: 0003 6E3F 0038 4A50 324F 4135 3045 4869 7461 6368
030: 6920 4844 5337 3231 3035 3043 4C41 3336 3220 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 0040
080: 01FC 0029 346B 7D69 4773 3469 BC41 4763 207F 0036
090: 0000 0000 FFFE 0000 0000 0008 00CA 00F9 2710 0000
100: 6030 3A38 0000 0000 00CA 0000 0000 5A87 5000 CCA3
110: 97C0 90D2 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 2180 0DF1 FA00 0001 4000 0404 026A 0000
140: 0000 0706 0906 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 514E 4235 0000 4802 0000 5DBD 47D3 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 87A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 88 88 5D 00 00 00 00 00 00 03 07 00 89 89 B6
020: 00 98 00 03 00 00 04 12 00 64 64 AC 0A 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 8E 8E 1D
050: 00 00 00 00 00 00 09 12 00 61 61 7B 5D 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 A1 0A 00 00 00 00 00 C0 32 00 62 62 BD
080: 0A 00 00 00 00 00 C1 12 00 62 62 BD 0A 00 00 00
090: 00 00 C2 02 00 78 78 32 00 14 00 3F 00 00 C4 32
0A0: 00 64 64 00 00 00 00 00 00 00 C5 22 00 64 64 00
0B0: 00 00 00 00 00 00 C6 08 00 64 64 00 00 00 00 00
0C0: 00 00 C7 0A 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 FD 12 01 5B
170: 03 00 01 00 01 51 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7F
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 10 00 00 00 00 00 00 00 00 00 00 02 36
010: 00 00 00 00 00 00 00 00 00 00 03 18 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 14 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
Disk má pořád vyšší teplotu.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu, celé zle..
OTL logfile created on: 26. 12. 2014 20:08:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lančin\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
1,97 Gb Total Physical Memory | 1,11 Gb Available Physical Memory | 56,30% Memory free
4,00 Gb Paging File | 2,31 Gb Available in Paging File | 57,77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 390,56 Gb Free Space | 83,87% Space Free | Partition Type: NTFS
Computer Name: LANČIN-PC | User Name: Lančin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Lančin\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
PRC - C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
PRC - C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\BrownyInd\Brother\BrIndicator.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
PRC - C:\Windows\System32\ENAgent.exe (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\BitLord 2\Bitlord files\bitlord.exe (House of Life)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - c:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
========== Modules (No Company Name) ==========
MOD - c:\Program Files\BitLord 2\Bitlord files\zope.interface-4.0.1-py2.6-win32.egg\zope\interface\_zope_interface_coptimizations.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libtorrent.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\twisted.python._initgroups.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libxml2-2.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libglade-2.0-0.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\zlib1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libpng14-14.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\engines\libpixmap.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\freetype6.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libfontconfig-1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libcairo-2.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libexpat-1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32com.shell.shell.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pythoncom26.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\winxpgui.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32gui.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32api.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32process.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32event.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32file.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pywintypes26.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.SSL.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.crypto.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.rand.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libcef.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gtk.glade.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pangocairo.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pango.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\atk.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gtk._gtk.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gio._gio.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gobject._gobject.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\glib._glib.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lxml.etree.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\cairo._cairo.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\select.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_hashlib.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pyexpat.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_ctypes.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_ssl.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_socket.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\engines\libclearlooks.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pyHook._cpyHook.pyd ()
MOD - C:\Program Files\Brother\BrUtilities\BrLogAPI.dll ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
========== Services (SafeList) ==========
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (IEEtwCollectorService) -- C:\Windows\System32\IEEtwCollector.exe (Microsoft Corporation)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (VIAKaraokeService) -- C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
SRV - (c2cautoupdatesvc) -- C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
SRV - (c2cpnrsvc) -- C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
SRV - (LiveUpdateSvc) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (BrYNSvc) -- C:\Program Files\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
SRV - (ENAgent) -- C:\Windows\System32\ENAgent.exe (SEIKO EPSON CORPORATION)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (ABBYY.Licensing.FineReader.Sprint.9.0) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
========== Driver Services (SafeList) ==========
DRV - (gdrv) -- File not found
DRV - (eamonm) -- C:\Windows\System32\drivers\eamonm.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (L1C) -- C:\Windows\System32\drivers\L1C62x86.sys (Qualcomm Atheros Co., Ltd.)
DRV - (VIAHdAudAddService) -- C:\Windows\System32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (SmartDefragDriver) -- C:\Windows\System32\drivers\SmartDefragDriver.sys (IObit)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (DFX11_1) -- C:\Windows\System32\drivers\dfx11_1.sys (Windows (R) Win 7 DDK provider)
DRV - (nmwcdnsu) -- C:\Windows\System32\drivers\nmwcdnsu.sys (Nokia)
DRV - (RMCAST) -- C:\Windows\System32\drivers\rmcast.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (WinRing0_1_2_0) -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys (OpenLibSys.org)
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (PAC207) -- C:\Windows\System32\drivers\pfc027.sys ()
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.olmici.cz/hry-olmici
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 3A 41 DD 58 E8 76 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {674E7445-6FDF-4580-86C1-6509D44E87AD}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\..\SearchScopes\{674E7445-6FDF-4580-86C1-6509D44E87AD}: "URL" = http://www.google.co.uk/search?hl=en&q={searchTerms}&meta=
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?btnG=Google+Search&q="
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.zoznam.sk"
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:2.3
FF - prefs.js..extensions.enabledAddons: %7B71bfcce7-421d-4042-95d4-a585a821cbca%7D:2.6.34
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Lančin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2011/09/23 14:33:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Extensions
[2014/12/05 07:56:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Firefox\Profiles\9mn8fqyf.default-1388217033647\extensions
[2014/10/11 07:20:05 | 001,006,177 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\antigameorigin@antigame.de.xpi
[2014/11/25 18:33:31 | 000,220,727 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{71bfcce7-421d-4042-95d4-a585a821cbca}.xpi
[2014/11/13 06:48:25 | 000,979,699 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/10/30 08:38:39 | 000,304,000 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/12/09 15:33:43 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{71BFCCE7-421D-4042-95D4-A585A821CBCA}.XPI
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
File not found (No name found) -- C:\USERS\LANČIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
O1 HOSTS File: ([2014/12/11 20:08:33 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O4 - HKLM..\Run: [BrStsInd00] C:\Program Files\BrownyInd\Brother\BrIndicator.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [EPLTarget\P0000000000000000] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIHJE.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKLM..\RunOnce: [BrUrl] C:\Windows\System32\url.dll (Microsoft Corporation)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\Lančin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Orezávač obrazovky a spúšťač programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 10.51.2)
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_04)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{948A0B18-2400-481B-AA77-1406AEC73DFC}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014/12/26 20:05:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Lančin\Desktop\OTL.exe
[2014/12/25 10:54:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2014/12/25 10:54:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\IHlpr
[2014/12/25 10:54:13 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\OpenCandy
[2014/12/25 10:54:12 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2014/12/25 10:53:01 | 002,997,112 | ---- | C] (Crystal Dew World ) -- C:\Users\Lančin\Desktop\CrystalDiskInfo6_2_2-en.exe
[2014/12/25 08:55:14 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\MemTest
[2014/12/23 12:20:30 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Documents\LDW
[2014/12/23 12:06:47 | 000,000,000 | ---D | C] -- C:\Program Files\PC-home
[2014/12/23 11:50:52 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\HRY
[2014/12/23 11:48:26 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Python-Eggs
[2014/12/23 11:48:09 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\BitLord
[2014/12/23 11:47:52 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
[2014/12/23 11:45:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Documents\BitLord
[2014/12/23 11:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\BitLord 2
[2014/12/23 08:44:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
[2014/12/23 08:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\BrownyInd
[2014/12/23 08:41:49 | 000,000,000 | ---D | C] -- C:\Brother
[2014/12/23 08:41:41 | 000,000,000 | ---D | C] -- C:\Program Files\Browny02
[2014/12/23 08:41:34 | 000,113,744 | ---- | C] (Brother Industries Ltd) -- C:\Windows\System32\BRRBTOOL.EXE
[2014/12/23 08:41:33 | 000,180,224 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BROSNMP.DLL
[2014/12/23 08:41:33 | 000,077,824 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BRLMW03A.DLL
[2014/12/23 08:41:33 | 000,025,299 | ---- | C] (Brother Industries, Ltd) -- C:\Windows\System32\BRLM03A.DLL
[2014/12/23 08:41:31 | 000,178,688 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BRCOM12A.DLL
[2014/12/23 08:41:03 | 000,000,000 | ---D | C] -- C:\Program Files\Brother
[2014/12/23 08:39:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2014/12/21 20:58:59 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbGDCoInstaller.dll
[2014/12/21 20:58:49 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2014/12/21 20:58:47 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TsUsbFlt.sys
[2014/12/21 20:58:39 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdvidcrl.dll
[2014/12/21 20:58:39 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2014/12/21 20:58:39 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2014/12/21 20:58:39 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2014/12/21 20:58:39 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2014/12/21 20:58:39 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2014/12/21 20:58:39 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2014/12/17 21:00:43 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/12/13 09:52:27 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/12/11 20:06:55 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014/12/11 20:06:55 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\temp
[2014/12/11 13:09:03 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\AA
[2014/12/11 03:26:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\appraiser
[2014/12/11 03:09:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2014/12/11 03:09:18 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2014/12/11 03:09:18 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2014/12/11 03:09:18 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2014/12/11 03:09:18 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2014/12/11 01:17:25 | 001,160,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2014/12/11 01:17:25 | 000,873,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/12/11 01:17:25 | 000,728,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2014/12/11 01:17:25 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2014/12/11 01:17:25 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2014/12/11 01:17:24 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014/12/11 01:17:24 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2014/12/11 01:17:24 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/12/11 01:17:10 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/12/11 01:17:09 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/12/11 01:17:09 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/12/11 01:17:09 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/12/11 01:17:09 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/12/11 01:17:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/12/11 01:17:09 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/12/11 01:17:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/12/11 01:17:08 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/12/11 01:17:07 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/12/11 01:17:06 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/12/11 01:17:06 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/12/11 01:17:05 | 004,299,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/12/11 01:17:03 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/12/11 01:17:03 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/12/11 01:17:03 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/12/11 01:17:03 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/12/11 01:17:03 | 000,342,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/12/11 01:17:03 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/12/11 01:17:02 | 002,052,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/12/11 01:17:02 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/12/11 01:17:01 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/12/11 01:16:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/12/11 01:15:02 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\charmap.exe
[2014/12/11 01:14:35 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2014/12/11 01:14:35 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2014/12/11 01:14:35 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2014/12/11 01:14:35 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2014/12/09 15:33:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/12/08 20:15:28 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\backups
[2014/12/07 10:12:22 | 000,000,000 | ---D | C] -- C:\Windows\tasks\ImCleanDisabled
[2014/12/06 14:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2014/12/05 09:05:32 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Dream Aquarium
[2014/12/05 09:05:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium
[2014/12/05 09:05:29 | 000,000,000 | ---D | C] -- C:\Program Files\Dream Aquarium
[2014/12/05 08:47:43 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\MIX priečinky
[2014/12/04 21:04:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\CrashDumps
[2014/12/04 20:46:07 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014/12/04 20:17:52 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2014/12/04 11:36:59 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2014/12/04 08:03:02 | 000,114,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/12/04 08:02:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/12/04 08:02:32 | 000,075,480 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/12/04 08:02:32 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/12/04 08:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/12/04 07:53:04 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/12/04 07:47:23 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\Adobe
[2011/09/19 17:46:23 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Lančin\AppData\Roaming\pcouffin.sys
========== Files - Modified Within 30 Days ==========
[2014/12/26 20:05:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lančin\Desktop\OTL.exe
[2014/12/26 19:30:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/12/26 10:08:05 | 000,095,620 | ---- | M] () -- C:\Users\Lančin\Desktop\supercar.jpg
[2014/12/25 10:54:19 | 000,001,930 | ---- | M] () -- C:\Users\Lančin\Desktop\CrystalDiskInfo.lnk
[2014/12/25 10:53:16 | 002,997,112 | ---- | M] (Crystal Dew World ) -- C:\Users\Lančin\Desktop\CrystalDiskInfo6_2_2-en.exe
[2014/12/23 12:46:22 | 000,000,791 | ---- | M] () -- C:\Users\Lančin\Desktop\Plant Tycoon - odkaz.lnk
[2014/12/23 11:47:52 | 000,001,973 | ---- | M] () -- C:\Users\Lančin\Desktop\BitLord.lnk
[2014/12/23 08:25:08 | 000,023,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/12/23 08:25:08 | 000,023,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/12/22 10:13:10 | 000,654,270 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/12/22 10:13:10 | 000,122,142 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/12/21 21:06:36 | 000,003,995 | ---- | M] () -- C:\Windows\System32\ŮÚŰÜÝŢßŔÁÂĂÄĹĆÇČÉĘËĚÍÎĎĐŃŇÓÔŐÖ÷ŘŮÚŰÜÝŢ
[2014/12/21 21:06:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/12/21 21:06:25 | 1582,686,208 | -HS- | M] () -- C:\hiberfil.sys
[2014/12/21 04:50:22 | 190,802,830 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/12/20 15:39:56 | 000,921,632 | ---- | M] () -- C:\StiImg.dat
[2014/12/13 04:33:44 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/12/11 20:08:33 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014/12/10 06:30:05 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/12/10 06:30:05 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/12/06 08:03:21 | 000,169,787 | ---- | M] () -- C:\Users\Lančin\Desktop\40-clock-tattoo-on-hand.jpg
[2014/12/04 20:17:50 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014/12/04 20:06:54 | 000,034,808 | ---- | M] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014/12/04 10:57:36 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/12/04 05:38:59 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014/12/04 05:38:45 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2014/12/04 05:38:40 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2014/12/04 05:38:37 | 000,728,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2014/12/04 05:38:36 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/12/04 05:38:36 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2014/12/04 05:34:13 | 000,873,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/12/02 00:28:26 | 001,160,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2014/12/01 20:04:41 | 000,117,459 | ---- | M] () -- C:\Users\Lančin\Desktop\antigame ostavajuce letky.PNG
[2014/11/29 10:32:28 | 000,000,000 | ---- | M] () -- C:\asc_rdflag
[2014/11/27 02:10:45 | 000,342,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
========== Files Created - No Company Name ==========
[2014/12/26 10:08:04 | 000,095,620 | ---- | C] () -- C:\Users\Lančin\Desktop\supercar.jpg
[2014/12/25 10:54:19 | 000,001,930 | ---- | C] () -- C:\Users\Lančin\Desktop\CrystalDiskInfo.lnk
[2014/12/23 12:46:22 | 000,000,791 | ---- | C] () -- C:\Users\Lančin\Desktop\Plant Tycoon - odkaz.lnk
[2014/12/23 11:47:52 | 000,001,973 | ---- | C] () -- C:\Users\Lančin\Desktop\BitLord.lnk
[2014/12/23 08:41:34 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BRTCPCON.DLL
[2014/12/23 08:41:33 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI
[2014/12/23 08:41:19 | 000,000,050 | ---- | C] () -- C:\Windows\System32\BRADM12A.DAT
[2014/12/21 04:50:22 | 190,802,830 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2014/12/06 08:03:21 | 000,169,787 | ---- | C] () -- C:\Users\Lančin\Desktop\40-clock-tattoo-on-hand.jpg
[2014/12/04 20:32:20 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2014/12/04 11:37:01 | 000,034,808 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014/12/01 20:04:36 | 000,117,459 | ---- | C] () -- C:\Users\Lančin\Desktop\antigame ostavajuce letky.PNG
[2014/11/29 10:32:28 | 000,000,000 | ---- | C] () -- C:\asc_rdflag
[2014/10/20 07:53:58 | 000,000,062 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\mbam.context.scan
[2014/08/16 03:27:20 | 000,235,008 | ---- | C] () -- C:\Windows\System32\FltEng.dll
[2014/06/19 06:19:10 | 000,000,024 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\temp.ini
[2014/01/04 15:46:14 | 000,003,224 | ---- | C] () -- C:\Users\Lančin\AppData\Local\recently-used.xbel
[2012/06/04 18:42:23 | 000,065,536 | ---- | C] () -- C:\Users\Lančin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/20 09:11:32 | 000,008,654 | ---- | C] () -- C:\Users\Lančin\BurnInTestLog.htm
[2011/09/19 18:04:56 | 000,001,024 | ---- | C] () -- C:\Users\Lančin\.rnd
[2011/09/19 17:46:23 | 000,087,608 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\inst.exe
[2011/09/19 17:46:23 | 000,007,887 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\pcouffin.cat
[2011/09/19 17:46:23 | 000,001,144 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\pcouffin.inf
========== ZeroAccess Check ==========
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013/09/22 10:07:58 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\.minecraft
[2014/12/23 12:07:44 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\BitLord
[2014/12/05 09:05:57 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Dream Aquarium
[2013/09/22 09:41:05 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Drivers For Free
[2013/09/22 11:47:15 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Epson
[2011/09/19 17:22:28 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ESET
[2012/10/13 06:00:48 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\EurekaLog
[2013/04/16 16:16:17 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ICQ
[2012/11/04 16:19:24 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ICQ Search
[2014/12/25 10:54:16 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IHlpr
[2014/10/09 09:58:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IObit
[2014/11/11 06:19:15 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IrfanView
[2011/11/14 13:33:43 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\LogoMaker
[2013/01/31 20:55:18 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\MediaMonkey
[2013/07/10 10:12:00 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Minecraft Version Changer
[2013/04/08 09:23:06 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Mumble
[2013/02/17 07:49:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Nitro PDF
[2014/12/25 10:54:13 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\OpenCandy
[2014/11/11 06:19:16 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ProductData
[2014/12/23 11:48:26 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Python-Eggs
[2011/11/05 00:25:47 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\SMS Sender
[2013/04/15 16:04:26 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\TS3Client
[2012/12/17 16:02:12 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Unity
[2013/01/19 20:07:44 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\uTorrent
[2011/09/19 17:46:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Vso
[2011/09/19 19:10:34 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Zoner
========== Purity Check ==========
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lančin\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
1,97 Gb Total Physical Memory | 1,11 Gb Available Physical Memory | 56,30% Memory free
4,00 Gb Paging File | 2,31 Gb Available in Paging File | 57,77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 390,56 Gb Free Space | 83,87% Space Free | Partition Type: NTFS
Computer Name: LANČIN-PC | User Name: Lančin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Lančin\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
PRC - C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
PRC - C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\BrownyInd\Brother\BrIndicator.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
PRC - C:\Windows\System32\ENAgent.exe (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\BitLord 2\Bitlord files\bitlord.exe (House of Life)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - c:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
========== Modules (No Company Name) ==========
MOD - c:\Program Files\BitLord 2\Bitlord files\zope.interface-4.0.1-py2.6-win32.egg\zope\interface\_zope_interface_coptimizations.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libtorrent.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\twisted.python._initgroups.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libxml2-2.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libglade-2.0-0.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\zlib1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libpng14-14.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\engines\libpixmap.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\freetype6.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libfontconfig-1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libcairo-2.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libexpat-1.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32com.shell.shell.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pythoncom26.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\winxpgui.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32gui.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32api.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32process.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32event.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\win32file.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pywintypes26.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.SSL.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.crypto.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\OpenSSL.rand.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\libcef.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gtk.glade.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pangocairo.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pango.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\atk.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gtk._gtk.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gio._gio.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\gobject._gobject.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\glib._glib.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lxml.etree.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\cairo._cairo.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\select.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_hashlib.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pyexpat.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_ctypes.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_ssl.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\_socket.pyd ()
MOD - C:\Program Files\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\engines\libclearlooks.dll ()
MOD - C:\Program Files\BitLord 2\Bitlord files\pyHook._cpyHook.pyd ()
MOD - C:\Program Files\Brother\BrUtilities\BrLogAPI.dll ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
========== Services (SafeList) ==========
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (IEEtwCollectorService) -- C:\Windows\System32\IEEtwCollector.exe (Microsoft Corporation)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (VIAKaraokeService) -- C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
SRV - (c2cautoupdatesvc) -- C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
SRV - (c2cpnrsvc) -- C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
SRV - (LiveUpdateSvc) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (BrYNSvc) -- C:\Program Files\Browny02\BrYNSvc.exe (Brother Industries, Ltd.)
SRV - (ENAgent) -- C:\Windows\System32\ENAgent.exe (SEIKO EPSON CORPORATION)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (ABBYY.Licensing.FineReader.Sprint.9.0) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)
========== Driver Services (SafeList) ==========
DRV - (gdrv) -- File not found
DRV - (eamonm) -- C:\Windows\System32\drivers\eamonm.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (L1C) -- C:\Windows\System32\drivers\L1C62x86.sys (Qualcomm Atheros Co., Ltd.)
DRV - (VIAHdAudAddService) -- C:\Windows\System32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (SmartDefragDriver) -- C:\Windows\System32\drivers\SmartDefragDriver.sys (IObit)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (DFX11_1) -- C:\Windows\System32\drivers\dfx11_1.sys (Windows (R) Win 7 DDK provider)
DRV - (nmwcdnsu) -- C:\Windows\System32\drivers\nmwcdnsu.sys (Nokia)
DRV - (RMCAST) -- C:\Windows\System32\drivers\rmcast.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (WinRing0_1_2_0) -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys (OpenLibSys.org)
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (PAC207) -- C:\Windows\System32\drivers\pfc027.sys ()
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.olmici.cz/hry-olmici
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 3A 41 DD 58 E8 76 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {674E7445-6FDF-4580-86C1-6509D44E87AD}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\..\SearchScopes\{674E7445-6FDF-4580-86C1-6509D44E87AD}: "URL" = http://www.google.co.uk/search?hl=en&q={searchTerms}&meta=
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?btnG=Google+Search&q="
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.zoznam.sk"
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:2.3
FF - prefs.js..extensions.enabledAddons: %7B71bfcce7-421d-4042-95d4-a585a821cbca%7D:2.6.34
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Lančin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2011/09/23 14:33:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Extensions
[2014/12/05 07:56:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Firefox\Profiles\9mn8fqyf.default-1388217033647\extensions
[2014/10/11 07:20:05 | 001,006,177 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\antigameorigin@antigame.de.xpi
[2014/11/25 18:33:31 | 000,220,727 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{71bfcce7-421d-4042-95d4-a585a821cbca}.xpi
[2014/11/13 06:48:25 | 000,979,699 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/10/30 08:38:39 | 000,304,000 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/12/09 15:33:43 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{71BFCCE7-421D-4042-95D4-A585A821CBCA}.XPI
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
File not found (No name found) -- C:\USERS\LANČIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
O1 HOSTS File: ([2014/12/11 20:08:33 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O4 - HKLM..\Run: [BrStsInd00] C:\Program Files\BrownyInd\Brother\BrIndicator.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [EPLTarget\P0000000000000000] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIHJE.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKLM..\RunOnce: [BrUrl] C:\Windows\System32\url.dll (Microsoft Corporation)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\Lančin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Orezávač obrazovky a spúšťač programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 10.51.2)
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_04)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{948A0B18-2400-481B-AA77-1406AEC73DFC}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014/12/26 20:05:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Lančin\Desktop\OTL.exe
[2014/12/25 10:54:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2014/12/25 10:54:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\IHlpr
[2014/12/25 10:54:13 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\OpenCandy
[2014/12/25 10:54:12 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2014/12/25 10:53:01 | 002,997,112 | ---- | C] (Crystal Dew World ) -- C:\Users\Lančin\Desktop\CrystalDiskInfo6_2_2-en.exe
[2014/12/25 08:55:14 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\MemTest
[2014/12/23 12:20:30 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Documents\LDW
[2014/12/23 12:06:47 | 000,000,000 | ---D | C] -- C:\Program Files\PC-home
[2014/12/23 11:50:52 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\HRY
[2014/12/23 11:48:26 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Python-Eggs
[2014/12/23 11:48:09 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\BitLord
[2014/12/23 11:47:52 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
[2014/12/23 11:45:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Documents\BitLord
[2014/12/23 11:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\BitLord 2
[2014/12/23 08:44:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
[2014/12/23 08:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\BrownyInd
[2014/12/23 08:41:49 | 000,000,000 | ---D | C] -- C:\Brother
[2014/12/23 08:41:41 | 000,000,000 | ---D | C] -- C:\Program Files\Browny02
[2014/12/23 08:41:34 | 000,113,744 | ---- | C] (Brother Industries Ltd) -- C:\Windows\System32\BRRBTOOL.EXE
[2014/12/23 08:41:33 | 000,180,224 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BROSNMP.DLL
[2014/12/23 08:41:33 | 000,077,824 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BRLMW03A.DLL
[2014/12/23 08:41:33 | 000,025,299 | ---- | C] (Brother Industries, Ltd) -- C:\Windows\System32\BRLM03A.DLL
[2014/12/23 08:41:31 | 000,178,688 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\System32\BRCOM12A.DLL
[2014/12/23 08:41:03 | 000,000,000 | ---D | C] -- C:\Program Files\Brother
[2014/12/23 08:39:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2014/12/21 20:58:59 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbGDCoInstaller.dll
[2014/12/21 20:58:49 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2014/12/21 20:58:47 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TsUsbFlt.sys
[2014/12/21 20:58:39 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdvidcrl.dll
[2014/12/21 20:58:39 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2014/12/21 20:58:39 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2014/12/21 20:58:39 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2014/12/21 20:58:39 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2014/12/21 20:58:39 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2014/12/21 20:58:39 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2014/12/17 21:00:43 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/12/13 09:52:27 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/12/11 20:06:55 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014/12/11 20:06:55 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\temp
[2014/12/11 13:09:03 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\AA
[2014/12/11 03:26:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\appraiser
[2014/12/11 03:09:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2014/12/11 03:09:18 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2014/12/11 03:09:18 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2014/12/11 03:09:18 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2014/12/11 03:09:18 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2014/12/11 01:17:25 | 001,160,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2014/12/11 01:17:25 | 000,873,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/12/11 01:17:25 | 000,728,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2014/12/11 01:17:25 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2014/12/11 01:17:25 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2014/12/11 01:17:24 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014/12/11 01:17:24 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2014/12/11 01:17:24 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/12/11 01:17:10 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/12/11 01:17:09 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/12/11 01:17:09 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/12/11 01:17:09 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/12/11 01:17:09 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/12/11 01:17:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/12/11 01:17:09 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/12/11 01:17:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/12/11 01:17:08 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/12/11 01:17:07 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/12/11 01:17:06 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/12/11 01:17:06 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/12/11 01:17:05 | 004,299,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/12/11 01:17:03 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/12/11 01:17:03 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/12/11 01:17:03 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/12/11 01:17:03 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/12/11 01:17:03 | 000,342,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/12/11 01:17:03 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/12/11 01:17:02 | 002,052,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/12/11 01:17:02 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/12/11 01:17:01 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/12/11 01:16:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/12/11 01:15:02 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\charmap.exe
[2014/12/11 01:14:35 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2014/12/11 01:14:35 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2014/12/11 01:14:35 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2014/12/11 01:14:35 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2014/12/09 15:33:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/12/08 20:15:28 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\backups
[2014/12/07 10:12:22 | 000,000,000 | ---D | C] -- C:\Windows\tasks\ImCleanDisabled
[2014/12/06 14:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2014/12/05 09:05:32 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Roaming\Dream Aquarium
[2014/12/05 09:05:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium
[2014/12/05 09:05:29 | 000,000,000 | ---D | C] -- C:\Program Files\Dream Aquarium
[2014/12/05 08:47:43 | 000,000,000 | ---D | C] -- C:\Users\Lančin\Desktop\MIX priečinky
[2014/12/04 21:04:16 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\CrashDumps
[2014/12/04 20:46:07 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014/12/04 20:17:52 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2014/12/04 11:36:59 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2014/12/04 08:03:02 | 000,114,904 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/12/04 08:02:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/12/04 08:02:32 | 000,075,480 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/12/04 08:02:32 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/12/04 08:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/12/04 07:53:04 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/12/04 07:47:23 | 000,000,000 | ---D | C] -- C:\Users\Lančin\AppData\Local\Adobe
[2011/09/19 17:46:23 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Lančin\AppData\Roaming\pcouffin.sys
========== Files - Modified Within 30 Days ==========
[2014/12/26 20:05:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lančin\Desktop\OTL.exe
[2014/12/26 19:30:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/12/26 10:08:05 | 000,095,620 | ---- | M] () -- C:\Users\Lančin\Desktop\supercar.jpg
[2014/12/25 10:54:19 | 000,001,930 | ---- | M] () -- C:\Users\Lančin\Desktop\CrystalDiskInfo.lnk
[2014/12/25 10:53:16 | 002,997,112 | ---- | M] (Crystal Dew World ) -- C:\Users\Lančin\Desktop\CrystalDiskInfo6_2_2-en.exe
[2014/12/23 12:46:22 | 000,000,791 | ---- | M] () -- C:\Users\Lančin\Desktop\Plant Tycoon - odkaz.lnk
[2014/12/23 11:47:52 | 000,001,973 | ---- | M] () -- C:\Users\Lančin\Desktop\BitLord.lnk
[2014/12/23 08:25:08 | 000,023,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/12/23 08:25:08 | 000,023,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/12/22 10:13:10 | 000,654,270 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/12/22 10:13:10 | 000,122,142 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/12/21 21:06:36 | 000,003,995 | ---- | M] () -- C:\Windows\System32\ŮÚŰÜÝŢßŔÁÂĂÄĹĆÇČÉĘËĚÍÎĎĐŃŇÓÔŐÖ÷ŘŮÚŰÜÝŢ
[2014/12/21 21:06:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/12/21 21:06:25 | 1582,686,208 | -HS- | M] () -- C:\hiberfil.sys
[2014/12/21 04:50:22 | 190,802,830 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/12/20 15:39:56 | 000,921,632 | ---- | M] () -- C:\StiImg.dat
[2014/12/13 04:33:44 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/12/11 20:08:33 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014/12/10 06:30:05 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/12/10 06:30:05 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/12/06 08:03:21 | 000,169,787 | ---- | M] () -- C:\Users\Lančin\Desktop\40-clock-tattoo-on-hand.jpg
[2014/12/04 20:17:50 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014/12/04 20:06:54 | 000,034,808 | ---- | M] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014/12/04 10:57:36 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/12/04 05:38:59 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014/12/04 05:38:45 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2014/12/04 05:38:40 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2014/12/04 05:38:37 | 000,728,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2014/12/04 05:38:36 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/12/04 05:38:36 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2014/12/04 05:34:13 | 000,873,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/12/02 00:28:26 | 001,160,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2014/12/01 20:04:41 | 000,117,459 | ---- | M] () -- C:\Users\Lančin\Desktop\antigame ostavajuce letky.PNG
[2014/11/29 10:32:28 | 000,000,000 | ---- | M] () -- C:\asc_rdflag
[2014/11/27 02:10:45 | 000,342,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
========== Files Created - No Company Name ==========
[2014/12/26 10:08:04 | 000,095,620 | ---- | C] () -- C:\Users\Lančin\Desktop\supercar.jpg
[2014/12/25 10:54:19 | 000,001,930 | ---- | C] () -- C:\Users\Lančin\Desktop\CrystalDiskInfo.lnk
[2014/12/23 12:46:22 | 000,000,791 | ---- | C] () -- C:\Users\Lančin\Desktop\Plant Tycoon - odkaz.lnk
[2014/12/23 11:47:52 | 000,001,973 | ---- | C] () -- C:\Users\Lančin\Desktop\BitLord.lnk
[2014/12/23 08:41:34 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BRTCPCON.DLL
[2014/12/23 08:41:33 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI
[2014/12/23 08:41:19 | 000,000,050 | ---- | C] () -- C:\Windows\System32\BRADM12A.DAT
[2014/12/21 04:50:22 | 190,802,830 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2014/12/06 08:03:21 | 000,169,787 | ---- | C] () -- C:\Users\Lančin\Desktop\40-clock-tattoo-on-hand.jpg
[2014/12/04 20:32:20 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2014/12/04 11:37:01 | 000,034,808 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014/12/01 20:04:36 | 000,117,459 | ---- | C] () -- C:\Users\Lančin\Desktop\antigame ostavajuce letky.PNG
[2014/11/29 10:32:28 | 000,000,000 | ---- | C] () -- C:\asc_rdflag
[2014/10/20 07:53:58 | 000,000,062 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\mbam.context.scan
[2014/08/16 03:27:20 | 000,235,008 | ---- | C] () -- C:\Windows\System32\FltEng.dll
[2014/06/19 06:19:10 | 000,000,024 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\temp.ini
[2014/01/04 15:46:14 | 000,003,224 | ---- | C] () -- C:\Users\Lančin\AppData\Local\recently-used.xbel
[2012/06/04 18:42:23 | 000,065,536 | ---- | C] () -- C:\Users\Lančin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/09/20 09:11:32 | 000,008,654 | ---- | C] () -- C:\Users\Lančin\BurnInTestLog.htm
[2011/09/19 18:04:56 | 000,001,024 | ---- | C] () -- C:\Users\Lančin\.rnd
[2011/09/19 17:46:23 | 000,087,608 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\inst.exe
[2011/09/19 17:46:23 | 000,007,887 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\pcouffin.cat
[2011/09/19 17:46:23 | 000,001,144 | ---- | C] () -- C:\Users\Lančin\AppData\Roaming\pcouffin.inf
========== ZeroAccess Check ==========
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013/09/22 10:07:58 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\.minecraft
[2014/12/23 12:07:44 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\BitLord
[2014/12/05 09:05:57 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Dream Aquarium
[2013/09/22 09:41:05 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Drivers For Free
[2013/09/22 11:47:15 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Epson
[2011/09/19 17:22:28 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ESET
[2012/10/13 06:00:48 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\EurekaLog
[2013/04/16 16:16:17 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ICQ
[2012/11/04 16:19:24 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ICQ Search
[2014/12/25 10:54:16 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IHlpr
[2014/10/09 09:58:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IObit
[2014/11/11 06:19:15 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\IrfanView
[2011/11/14 13:33:43 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\LogoMaker
[2013/01/31 20:55:18 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\MediaMonkey
[2013/07/10 10:12:00 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Minecraft Version Changer
[2013/04/08 09:23:06 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Mumble
[2013/02/17 07:49:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Nitro PDF
[2014/12/25 10:54:13 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\OpenCandy
[2014/11/11 06:19:16 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\ProductData
[2014/12/23 11:48:26 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Python-Eggs
[2011/11/05 00:25:47 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\SMS Sender
[2013/04/15 16:04:26 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\TS3Client
[2012/12/17 16:02:12 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Unity
[2013/01/19 20:07:44 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\uTorrent
[2011/09/19 17:46:54 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Vso
[2011/09/19 19:10:34 | 000,000,000 | ---D | M] -- C:\Users\Lančin\AppData\Roaming\Zoner
========== Purity Check ==========
Re: Prosím o kontrolu logu, celé zle..
OTL Extras logfile created on: 26. 12. 2014 20:08:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lančin\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
1,97 Gb Total Physical Memory | 1,11 Gb Available Physical Memory | 56,30% Memory free
4,00 Gb Paging File | 2,31 Gb Available in Paging File | 57,77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 390,56 Gb Free Space | 83,87% Space Free | Partition Type: NTFS
Computer Name: LANČIN-PC | User Name: Lančin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0387E9B7-9E1B-483D-8FC3-CD4FE399953A}" = lport=138 | protocol=17 | dir=in | app=system |
"{041A8201-4A2B-487F-9DFF-82A6DE77BCFC}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{119D130D-96EE-4BA6-9A77-26A62C29518A}" = lport=162 | protocol=17 | dir=in | svc=snmptrap | app=%systemroot%\system32\snmptrap.exe |
"{14F443F4-1B0D-4C61-94E9-5B482F78FDDB}" = rport=1723 | protocol=6 | dir=out | app=system |
"{1727A0B4-6291-479F-9C57-1043F09C28F0}" = lport=137 | protocol=17 | dir=in | app=system |
"{18AD8077-8315-4C20-A20B-C9770B596A4E}" = lport=445 | protocol=6 | dir=in | app=system |
"{1FF83A4F-E6C0-4E83-942A-0406DBB881F2}" = lport=445 | protocol=6 | dir=in | app=system |
"{225B17CB-CCCF-4B16-B42A-5FC6D79E4718}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2433F77E-DAFE-4C15-A2BC-0CEBD529EB03}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{25F45EC0-D9BF-481A-B823-8250F5BD9D96}" = lport=5358 | protocol=6 | dir=in | app=system |
"{263988F0-0652-41F3-A956-4A87499542E3}" = rport=1701 | protocol=17 | dir=out | app=system |
"{27463A68-4BDA-4D5A-88D9-A3E59FFCD368}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{294A17EF-9EAE-4344-8487-5AFD9019D29C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2C01E6A6-770A-489B-BC95-B9AFDF958506}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{2D724197-C773-44D3-80E8-804A1508FFE9}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3CD0380A-9F43-48B3-B56D-FF5538BCFE43}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{3FEA4864-21AD-4A19-9713-5A5AF6DE5F07}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{4458FD9C-2C92-4DC2-8B55-78D62605C816}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4505CC0A-C22F-43D2-AF2C-A2EADC862E61}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4B77A1AF-FCFC-4A23-B261-AB45284C8460}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\services.exe |
"{53037BD9-EDB1-43BC-B626-96BA4A064526}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{53145AD0-4E1C-4A07-AAEC-A6AAE26AD2A5}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{543755EE-4A37-4970-9C24-96F4C3EE1042}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{54B37ACA-E8DE-4AC6-BAFA-B0C5E937A46D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{5AF54D6E-27C2-429E-81DD-64A70F8F482A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C4E07D1-C665-480A-87EC-8163F36B021A}" = rport=5358 | protocol=6 | dir=out | app=system |
"{5CB59D06-B41B-48C4-A45D-07725B9A22FB}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{63051343-2998-40F0-A13B-8084365181BC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{642B829E-D2A9-4711-BB38-ED00FE11481D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6E97599D-DC8B-4067-B8E8-06DE37EA145C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7191A991-1FE1-4FA1-BB4C-7A902C9FCED3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7660468E-BAE9-4424-A668-7E192FB13B86}" = lport=10243 | protocol=6 | dir=in | app=system |
"{76E43272-71C5-440C-8E05-5093E1B67F67}" = lport=5357 | protocol=6 | dir=in | app=system |
"{7A51A259-D110-4A5C-8840-D5C34B9B7817}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7C798623-A601-47EC-A3F1-F373F5E44AD2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7D3E69B7-69B8-4DD5-9388-555A594CAA88}" = lport=1701 | protocol=17 | dir=in | app=system |
"{7FDF9240-47A1-4A25-9EC9-777E65393549}" = lport=443 | protocol=6 | dir=in | app=system |
"{88354020-E502-486D-9769-C5E85FDBE9A0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8A18EF08-9599-4939-AD6B-DCF488F8EA08}" = lport=10244 | protocol=6 | dir=in | app=system |
"{8E81CB46-FA1F-4128-8BBC-6F4D1A124001}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=%systemroot%\system32\svchost.exe |
"{8E9AA809-D5AD-46D7-BBAA-399A5BC1A9D9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=%systemroot%\system32\svchost.exe |
"{90146B45-7237-4C43-A46C-9A97F0152649}" = lport=1723 | protocol=6 | dir=in | app=system |
"{92010DAE-DDA1-4BEC-9236-C75955E5BF6F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9251B9C2-D2CE-4B86-A822-B2971B41107A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{97E1BA21-323B-437F-888A-21C2D9E1D0D9}" = rport=138 | protocol=17 | dir=out | app=system |
"{9E00D6B3-2D59-41C2-9D2F-E777D9D6E8A1}" = rport=3702 | protocol=17 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{A187EEAA-9FC9-425F-91B3-6FBF8DB9F07C}" = lport=10245 | protocol=6 | dir=in | app=system |
"{A2A18867-E752-494C-A807-3DE3834D7F46}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\vdsldr.exe |
"{A470D212-A9CF-4105-BCC3-6DB29EBFA9B0}" = rport=5357 | protocol=6 | dir=out | app=system |
"{A643D41B-EE1C-4EBD-85C6-EE8A6A831791}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{AE2A9B04-5482-4A85-8ADC-E54A8EE07CF7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF231F94-CD32-4A46-B43F-735B859E4501}" = lport=139 | protocol=6 | dir=in | app=system |
"{B2B41C46-CB2F-45B5-AB62-F0C7594B6B1A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B6E6721F-B926-48AD-8ED2-5E3C75566017}" = lport=80 | protocol=6 | dir=in | app=system |
"{BA1B1C84-86BD-47AF-9D5F-BECA3F6999F7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BFF5599A-4482-4BCD-919D-88A528F8880D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=zdieľanie súborov a tlačiarní (služba zaraďovača – rpc-epmap) |
"{C3045591-6C98-424C-84F2-99BB56FD1D9A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C699927A-1301-4E65-962E-60CEB790F934}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{C6BC5B14-C6E5-4F01-AEEE-3094091BEA7B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C7365A8A-AF67-4D27-9E67-E73A632C76B4}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{CB856144-7A3B-407F-922C-17565B3EBDBA}" = rport=445 | protocol=6 | dir=out | app=system |
"{CE436ED3-59A7-43E3-A35B-C21638D893EF}" = lport=3390 | protocol=6 | dir=in | app=system |
"{D36EE707-600B-44DE-A78D-2346A1D44745}" = lport=445 | protocol=6 | dir=in | app=system |
"{D4813688-1C91-42DC-8672-A4D1A2541B43}" = rport=137 | protocol=17 | dir=out | app=system |
"{D485310E-B115-4ECE-872D-0922807DC725}" = lport=445 | protocol=6 | dir=in | app=system |
"{DA79CA36-7FC9-4DD3-A806-4194D7102831}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{E1CED53C-714D-455B-9E87-3A24FB455EA2}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E2A326F1-B9FA-4B71-80AB-4A13A9A5D40F}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E40F7924-D3E1-4D04-9FF6-3289C9B69216}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E83DFC1B-CBAB-45D0-9F71-2F361E591796}" = rport=139 | protocol=6 | dir=out | app=system |
"{EC7B6F97-08DC-4C2A-B200-7A6F22BE62A4}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=%systemroot%\system32\svchost.exe |
"{F2E736C2-DC99-4AD2-8A53-A5019D249C9A}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{F44870F5-AC13-4E68-808E-314112FA3DBB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{F50FC69F-239C-4A9C-BB5A-5A945F2EB3FB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{F68A76B0-4E02-48B3-8DBF-1AF14E51EA18}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{F9657E78-96A6-4C19-8EE6-52CF5CCE73C0}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=%systemroot%\system32\vds.exe |
"{FBDA6DFC-1064-43CA-A46F-19BCC8463F72}" = lport=rpc | protocol=6 | dir=in | svc=ktmrm | app=%systemroot%\system32\svchost.exe |
"{FC48E786-6CE1-4DA2-8D3B-89BC3CAC76FB}" = rport=10243 | protocol=6 | dir=out | app=system |
"{FE545CF3-D43A-4BE9-BE93-DE2AB47AA27F}" = lport=5985 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{024D483D-80D7-4043-8D69-E2A1C480A382}" = protocol=58 | dir=out | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv6 - odchádzajúce prenosy) |
"{0369C7E8-21BC-45A2-BC69-7EBA7E06FA4F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{082236AB-7471-4588-BCDD-3C22F2651DA0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1ACFDD36-235F-4B48-88A1-FED698FF798A}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{1E2F698E-F30D-4D19-9848-719FCE2771B6}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20C0B6DF-FB22-4B82-8D75-41ECDC186E34}" = protocol=1 | dir=out | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv4 - odchádzajúce prenosy) |
"{25165985-75CF-42F5-8585-C3C66312BB31}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{290E3810-9240-4D6F-AB12-B1B70C29AE1B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2B5505CF-7CE0-4A4C-BDB2-4E5387E114BF}" = protocol=58 | dir=in | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv6 - prichádzajúce prenosy) |
"{37313C35-072A-4F78-87DF-0EE69CBF19B2}" = protocol=6 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{407BA547-2C84-48F3-B02A-6A88B0D91391}" = protocol=6 | dir=in | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{4C212755-81CA-4ABC-B008-A137844B89BC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{606D4A1D-8B65-47F7-B679-C08EBD2C0CB3}" = protocol=6 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{62E4DAFD-C0EA-4C34-A87A-218BB6C8CD6C}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{640A4B59-DA39-4D11-9023-006801A24E73}" = protocol=6 | dir=out | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{682637D6-93FE-4076-BB14-7445F1136E2E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6B1A701C-09DA-4C93-86B5-5E6E8798F02A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6C644186-1C43-4B06-ADDD-95E2508E57E4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{741509CE-43BA-4B00-A37B-6F8B6055107B}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{7B01BB3C-477E-4D1C-9DA7-AB31AA81E1D6}" = protocol=6 | dir=in | app=%systemroot%\system32\wbem\unsecapp.exe |
"{884BE7FC-3C6C-4ADC-8D77-9BB7CDD3264C}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{8ABC5644-AE59-4CEB-B0A0-6F5EA017BC67}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{96FC1174-B6A9-40FD-A4AA-67528832C0E0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9CB58FD6-4840-4578-9641-8CBDD1D4259B}" = protocol=17 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{9D98E541-DFE8-4DA1-AB22-5372924969FD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A58E911F-1A80-45DB-A732-15B026BEA326}" = protocol=6 | dir=out | app=%systemroot%\system32\msdtc.exe |
"{A84CE622-503E-4003-9A08-48B32F1431E7}" = protocol=6 | dir=in | app=%systemroot%\system32\msdtc.exe |
"{A9485CD3-EBDD-41E7-A0F3-31FEAB0F1DF1}" = protocol=47 | dir=out | app=system |
"{ACBC18DD-5679-436A-9324-B0E5B783DD14}" = protocol=6 | dir=out | app=system |
"{B16E68F8-69EF-4121-A231-AF6C7F8943B6}" = protocol=1 | dir=in | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv4 - prichádzajúce prenosy) |
"{B4450653-224C-464E-AD6C-5301875F1B09}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B464A5B4-4E76-4FF3-ABB6-83C0C7B96DB0}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{BC5DF17F-A1B1-4A7C-A935-3C3426C59E69}" = protocol=6 | dir=in | app=%systemroot%\system32\plasrv.exe |
"{BD3234AB-C019-48BE-A8DD-85C5B223B0BE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C14605CB-6E0A-45EA-86D9-F3E7E2A01678}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C85814FC-EF72-4A30-A85A-27BCD3FF0F9C}" = protocol=6 | dir=out | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{CAFAEA20-E5F7-479F-850C-47BA55E75352}" = protocol=6 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{CD970848-24C8-4D57-BB8D-8FA94DB010A2}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F5D4EB7B-4785-4A7E-B790-C3579360193E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F9538C63-94E9-4042-8396-94EEAE52C28B}" = protocol=47 | dir=in | app=system |
"{FDE54F21-7016-4C3B-8B48-53A856CBAD35}" = protocol=6 | dir=in | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"TCP Query User{0FB8C7DC-F56E-4402-BC20-21634362F7CF}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{26ADD13C-DC37-40DE-9E6E-E4E68F425BA6}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{28B7CB29-D190-4C0E-88C7-9354FFD25E0F}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{6245A463-086C-4619-BEB3-9A47D8FC8BA9}D:\easysetupassistant\wr1042n\easysetupassistant.exe" = protocol=6 | dir=in | app=d:\easysetupassistant\wr1042n\easysetupassistant.exe |
"TCP Query User{653A5820-9E7C-4E4B-A736-99EDD604EF6E}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{86452232-899E-44AF-A2FB-C55C33D43657}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{8B386397-5E94-4B7F-84DD-AEBA372DFC2C}C:\program files\bitlord\bitlord.exe" = protocol=6 | dir=in | app=c:\program files\bitlord\bitlord.exe |
"TCP Query User{99BA6148-CD7D-4B3D-9638-C581F1447A8B}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{9AD4F499-0A45-40A1-B9D5-4C3B8B0915E1}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{B5003677-B781-4D5B-B780-2347705DB50B}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{D2301DA9-71A0-4B05-B2AE-DA917A068564}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{1C9EDDC1-B533-420C-BCC1-58BD929A1CA8}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{23C283DE-55B0-4374-B5F9-0A2EC2C94A6C}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{44C63CA4-EDD4-49E8-9B77-D20897CA4074}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{4EEA6197-56A8-4AA5-B8A6-E63763991910}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{4FAB1EE6-6419-493B-B32A-ECCDFB2FBF87}C:\program files\bitlord\bitlord.exe" = protocol=17 | dir=in | app=c:\program files\bitlord\bitlord.exe |
"UDP Query User{9522B853-7F53-41FE-92FA-7B744B66E8CF}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{B45FC253-A98D-43B9-9F25-6AE0630095E8}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{C2A0B449-17A6-4381-A009-09DF8B58EB09}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{DBF63FEC-FAE7-4CFC-BBA1-6376156EA86F}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{E79DE39F-1E82-426A-9BEC-5AFC36674505}D:\easysetupassistant\wr1042n\easysetupassistant.exe" = protocol=17 | dir=in | app=d:\easysetupassistant\wr1042n\easysetupassistant.exe |
"UDP Query User{EC5BA1CC-01E9-4E27-89D3-FC14F38C34DD}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09764316-ABC4-4469-AD5B-D3EACE45EE3D}" = Drivers For Free
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.0
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 51
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{312F0FE4-11A7-4D46-918B-24B3713E0E15}" = ESET NOD32 Antivirus
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3E8DE1A6-B365-4FF6-B917-2892A34990E8}" = LG USB Modem Drivers
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F2442B7-A89E-42A4-8F0E-6937499855CA}" = HL-1110 series
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}" = Epson Event Manager
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISE_{0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISE_{8382BA92-20E3-47B6-971B-F673F0492D4E}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}" = Epson Easy Photo Print 2
"{A50DE037-B5C0-4C8A-8049-B0C576B313D1}" = Google+ Auto Backup
"{AC76BA86-7AD7-1051-7B44-AA1000000001}" = Adobe Reader X (10.1.13) - Slovak
"{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
"{D6D5CB84-0E6E-4E69-B300-C690B6911051}" = Nero 8
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Anonymity 4 Proxy_is1" = Anonymity 4 Proxy version 2.8
"BitLord" = BitLord 2.2
"CCleaner" = CCleaner
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.2.2
"DreamAqua" = Dream Aquarium
"Driver Booster_is1" = Driver Booster
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"EPSON SX130 Series" = EPSON SX130 Series Printer Uninstall
"EPSON SX130 Series Useg" = Používateľská príručka EPSON SX130 Series
"Fish Tycoon ." = Fish Tycoon .
"Game Booster_is1" = Game Booster 3
"GIMP-2_is1" = GIMP 2.8.8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"IObit Surfing Protection_is1" = Surfing Protection
"IObit_DriverBooster_is1" = Driver Booster
"IObitUninstall" = IObit Uninstaller
"IrfanView" = IrfanView (remove only)
"LG Internet Kit" = LG Internet Kit
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 2.0.4.1028
"Mozilla Firefox 34.0.5 (x86 sk)" = Mozilla Firefox 34.0.5 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Mp3 Codec" = Mpeg Layer3 Codec FHG-Radium v1.263
"Pass Finder" = Pass Finder Wizard
"Picasa 3" = Picasa 3
"Skype Hacker v2.4.6" = Skype Hacker v2.4.6
"Smart Defrag 3_is1" = Smart Defrag 3
"TNod" = TNod User & Password Finder
"WinRAR archiver" = WinRAR archiver
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16. 12. 2014 19:54:02 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 17. 12. 2014 18:50:37 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 18. 12. 2014 19:27:32 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 19. 12. 2014 2:39:39 | Computer Name = Lančin-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: NMIndexStoreSvr.exe, verzia: 3.3.3.0, časová
značka: 0x47c6bd1b Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x03030303 Identifikácia chybného
procesu: 0x594 Čas spustenia chybnej aplikácie: 0x01d01b56871268d0 Cesta chybnej
aplikácie: C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe Cesta chybného
modulu: unknown Identifikácia hlásenia: cda8e094-8749-11e4-b812-1c6f65cca9c9
Error - 19. 12. 2014 18:49:17 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 20. 12. 2014 19:44:11 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 21. 12. 2014 19:29:13 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 22. 12. 2014 5:13:10 | Computer Name = Lančin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 22. 12. 2014 5:13:10 | Computer Name = Lančin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 22. 12. 2014 20:25:20 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
[ System Events ]
Error - 23. 12. 2014 3:42:32 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:39 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:47 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:55 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:03 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:11 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:18 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:26 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:33 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:41 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lančin\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
1,97 Gb Total Physical Memory | 1,11 Gb Available Physical Memory | 56,30% Memory free
4,00 Gb Paging File | 2,31 Gb Available in Paging File | 57,77% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 390,56 Gb Free Space | 83,87% Space Free | Partition Type: NTFS
Computer Name: LANČIN-PC | User Name: Lančin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0387E9B7-9E1B-483D-8FC3-CD4FE399953A}" = lport=138 | protocol=17 | dir=in | app=system |
"{041A8201-4A2B-487F-9DFF-82A6DE77BCFC}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{119D130D-96EE-4BA6-9A77-26A62C29518A}" = lport=162 | protocol=17 | dir=in | svc=snmptrap | app=%systemroot%\system32\snmptrap.exe |
"{14F443F4-1B0D-4C61-94E9-5B482F78FDDB}" = rport=1723 | protocol=6 | dir=out | app=system |
"{1727A0B4-6291-479F-9C57-1043F09C28F0}" = lport=137 | protocol=17 | dir=in | app=system |
"{18AD8077-8315-4C20-A20B-C9770B596A4E}" = lport=445 | protocol=6 | dir=in | app=system |
"{1FF83A4F-E6C0-4E83-942A-0406DBB881F2}" = lport=445 | protocol=6 | dir=in | app=system |
"{225B17CB-CCCF-4B16-B42A-5FC6D79E4718}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2433F77E-DAFE-4C15-A2BC-0CEBD529EB03}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{25F45EC0-D9BF-481A-B823-8250F5BD9D96}" = lport=5358 | protocol=6 | dir=in | app=system |
"{263988F0-0652-41F3-A956-4A87499542E3}" = rport=1701 | protocol=17 | dir=out | app=system |
"{27463A68-4BDA-4D5A-88D9-A3E59FFCD368}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{294A17EF-9EAE-4344-8487-5AFD9019D29C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2C01E6A6-770A-489B-BC95-B9AFDF958506}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{2D724197-C773-44D3-80E8-804A1508FFE9}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3CD0380A-9F43-48B3-B56D-FF5538BCFE43}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{3FEA4864-21AD-4A19-9713-5A5AF6DE5F07}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{4458FD9C-2C92-4DC2-8B55-78D62605C816}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4505CC0A-C22F-43D2-AF2C-A2EADC862E61}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4B77A1AF-FCFC-4A23-B261-AB45284C8460}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\services.exe |
"{53037BD9-EDB1-43BC-B626-96BA4A064526}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{53145AD0-4E1C-4A07-AAEC-A6AAE26AD2A5}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{543755EE-4A37-4970-9C24-96F4C3EE1042}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{54B37ACA-E8DE-4AC6-BAFA-B0C5E937A46D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{5AF54D6E-27C2-429E-81DD-64A70F8F482A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C4E07D1-C665-480A-87EC-8163F36B021A}" = rport=5358 | protocol=6 | dir=out | app=system |
"{5CB59D06-B41B-48C4-A45D-07725B9A22FB}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{63051343-2998-40F0-A13B-8084365181BC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{642B829E-D2A9-4711-BB38-ED00FE11481D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6E97599D-DC8B-4067-B8E8-06DE37EA145C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7191A991-1FE1-4FA1-BB4C-7A902C9FCED3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7660468E-BAE9-4424-A668-7E192FB13B86}" = lport=10243 | protocol=6 | dir=in | app=system |
"{76E43272-71C5-440C-8E05-5093E1B67F67}" = lport=5357 | protocol=6 | dir=in | app=system |
"{7A51A259-D110-4A5C-8840-D5C34B9B7817}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7C798623-A601-47EC-A3F1-F373F5E44AD2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7D3E69B7-69B8-4DD5-9388-555A594CAA88}" = lport=1701 | protocol=17 | dir=in | app=system |
"{7FDF9240-47A1-4A25-9EC9-777E65393549}" = lport=443 | protocol=6 | dir=in | app=system |
"{88354020-E502-486D-9769-C5E85FDBE9A0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8A18EF08-9599-4939-AD6B-DCF488F8EA08}" = lport=10244 | protocol=6 | dir=in | app=system |
"{8E81CB46-FA1F-4128-8BBC-6F4D1A124001}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=%systemroot%\system32\svchost.exe |
"{8E9AA809-D5AD-46D7-BBAA-399A5BC1A9D9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=%systemroot%\system32\svchost.exe |
"{90146B45-7237-4C43-A46C-9A97F0152649}" = lport=1723 | protocol=6 | dir=in | app=system |
"{92010DAE-DDA1-4BEC-9236-C75955E5BF6F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9251B9C2-D2CE-4B86-A822-B2971B41107A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{97E1BA21-323B-437F-888A-21C2D9E1D0D9}" = rport=138 | protocol=17 | dir=out | app=system |
"{9E00D6B3-2D59-41C2-9D2F-E777D9D6E8A1}" = rport=3702 | protocol=17 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{A187EEAA-9FC9-425F-91B3-6FBF8DB9F07C}" = lport=10245 | protocol=6 | dir=in | app=system |
"{A2A18867-E752-494C-A807-3DE3834D7F46}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\vdsldr.exe |
"{A470D212-A9CF-4105-BCC3-6DB29EBFA9B0}" = rport=5357 | protocol=6 | dir=out | app=system |
"{A643D41B-EE1C-4EBD-85C6-EE8A6A831791}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{AE2A9B04-5482-4A85-8ADC-E54A8EE07CF7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF231F94-CD32-4A46-B43F-735B859E4501}" = lport=139 | protocol=6 | dir=in | app=system |
"{B2B41C46-CB2F-45B5-AB62-F0C7594B6B1A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B6E6721F-B926-48AD-8ED2-5E3C75566017}" = lport=80 | protocol=6 | dir=in | app=system |
"{BA1B1C84-86BD-47AF-9D5F-BECA3F6999F7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BFF5599A-4482-4BCD-919D-88A528F8880D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=zdieľanie súborov a tlačiarní (služba zaraďovača – rpc-epmap) |
"{C3045591-6C98-424C-84F2-99BB56FD1D9A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C699927A-1301-4E65-962E-60CEB790F934}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{C6BC5B14-C6E5-4F01-AEEE-3094091BEA7B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C7365A8A-AF67-4D27-9E67-E73A632C76B4}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{CB856144-7A3B-407F-922C-17565B3EBDBA}" = rport=445 | protocol=6 | dir=out | app=system |
"{CE436ED3-59A7-43E3-A35B-C21638D893EF}" = lport=3390 | protocol=6 | dir=in | app=system |
"{D36EE707-600B-44DE-A78D-2346A1D44745}" = lport=445 | protocol=6 | dir=in | app=system |
"{D4813688-1C91-42DC-8672-A4D1A2541B43}" = rport=137 | protocol=17 | dir=out | app=system |
"{D485310E-B115-4ECE-872D-0922807DC725}" = lport=445 | protocol=6 | dir=in | app=system |
"{DA79CA36-7FC9-4DD3-A806-4194D7102831}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{E1CED53C-714D-455B-9E87-3A24FB455EA2}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E2A326F1-B9FA-4B71-80AB-4A13A9A5D40F}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E40F7924-D3E1-4D04-9FF6-3289C9B69216}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E83DFC1B-CBAB-45D0-9F71-2F361E591796}" = rport=139 | protocol=6 | dir=out | app=system |
"{EC7B6F97-08DC-4C2A-B200-7A6F22BE62A4}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=%systemroot%\system32\svchost.exe |
"{F2E736C2-DC99-4AD2-8A53-A5019D249C9A}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{F44870F5-AC13-4E68-808E-314112FA3DBB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{F50FC69F-239C-4A9C-BB5A-5A945F2EB3FB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{F68A76B0-4E02-48B3-8DBF-1AF14E51EA18}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{F9657E78-96A6-4C19-8EE6-52CF5CCE73C0}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=%systemroot%\system32\vds.exe |
"{FBDA6DFC-1064-43CA-A46F-19BCC8463F72}" = lport=rpc | protocol=6 | dir=in | svc=ktmrm | app=%systemroot%\system32\svchost.exe |
"{FC48E786-6CE1-4DA2-8D3B-89BC3CAC76FB}" = rport=10243 | protocol=6 | dir=out | app=system |
"{FE545CF3-D43A-4BE9-BE93-DE2AB47AA27F}" = lport=5985 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{024D483D-80D7-4043-8D69-E2A1C480A382}" = protocol=58 | dir=out | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv6 - odchádzajúce prenosy) |
"{0369C7E8-21BC-45A2-BC69-7EBA7E06FA4F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{082236AB-7471-4588-BCDD-3C22F2651DA0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1ACFDD36-235F-4B48-88A1-FED698FF798A}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{1E2F698E-F30D-4D19-9848-719FCE2771B6}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20C0B6DF-FB22-4B82-8D75-41ECDC186E34}" = protocol=1 | dir=out | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv4 - odchádzajúce prenosy) |
"{25165985-75CF-42F5-8585-C3C66312BB31}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{290E3810-9240-4D6F-AB12-B1B70C29AE1B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2B5505CF-7CE0-4A4C-BDB2-4E5387E114BF}" = protocol=58 | dir=in | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv6 - prichádzajúce prenosy) |
"{37313C35-072A-4F78-87DF-0EE69CBF19B2}" = protocol=6 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{407BA547-2C84-48F3-B02A-6A88B0D91391}" = protocol=6 | dir=in | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{4C212755-81CA-4ABC-B008-A137844B89BC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{606D4A1D-8B65-47F7-B679-C08EBD2C0CB3}" = protocol=6 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{62E4DAFD-C0EA-4C34-A87A-218BB6C8CD6C}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{640A4B59-DA39-4D11-9023-006801A24E73}" = protocol=6 | dir=out | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{682637D6-93FE-4076-BB14-7445F1136E2E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{6B1A701C-09DA-4C93-86B5-5E6E8798F02A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6C644186-1C43-4B06-ADDD-95E2508E57E4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{741509CE-43BA-4B00-A37B-6F8B6055107B}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{7B01BB3C-477E-4D1C-9DA7-AB31AA81E1D6}" = protocol=6 | dir=in | app=%systemroot%\system32\wbem\unsecapp.exe |
"{884BE7FC-3C6C-4ADC-8D77-9BB7CDD3264C}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{8ABC5644-AE59-4CEB-B0A0-6F5EA017BC67}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{96FC1174-B6A9-40FD-A4AA-67528832C0E0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9CB58FD6-4840-4578-9641-8CBDD1D4259B}" = protocol=17 | dir=in | app=c:\program files\bitlord 2\bitlord files\bitlord.exe |
"{9D98E541-DFE8-4DA1-AB22-5372924969FD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A58E911F-1A80-45DB-A732-15B026BEA326}" = protocol=6 | dir=out | app=%systemroot%\system32\msdtc.exe |
"{A84CE622-503E-4003-9A08-48B32F1431E7}" = protocol=6 | dir=in | app=%systemroot%\system32\msdtc.exe |
"{A9485CD3-EBDD-41E7-A0F3-31FEAB0F1DF1}" = protocol=47 | dir=out | app=system |
"{ACBC18DD-5679-436A-9324-B0E5B783DD14}" = protocol=6 | dir=out | app=system |
"{B16E68F8-69EF-4121-A231-AF6C7F8943B6}" = protocol=1 | dir=in | name=zdieľanie súborov a tlačiarní (žiadosť o echo - icmpv4 - prichádzajúce prenosy) |
"{B4450653-224C-464E-AD6C-5301875F1B09}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B464A5B4-4E76-4FF3-ABB6-83C0C7B96DB0}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{BC5DF17F-A1B1-4A7C-A935-3C3426C59E69}" = protocol=6 | dir=in | app=%systemroot%\system32\plasrv.exe |
"{BD3234AB-C019-48BE-A8DD-85C5B223B0BE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C14605CB-6E0A-45EA-86D9-F3E7E2A01678}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C85814FC-EF72-4A30-A85A-27BCD3FF0F9C}" = protocol=6 | dir=out | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{CAFAEA20-E5F7-479F-850C-47BA55E75352}" = protocol=6 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{CD970848-24C8-4D57-BB8D-8FA94DB010A2}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F5D4EB7B-4785-4A7E-B790-C3579360193E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F9538C63-94E9-4042-8396-94EEAE52C28B}" = protocol=47 | dir=in | app=system |
"{FDE54F21-7016-4C3B-8B48-53A856CBAD35}" = protocol=6 | dir=in | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"TCP Query User{0FB8C7DC-F56E-4402-BC20-21634362F7CF}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{26ADD13C-DC37-40DE-9E6E-E4E68F425BA6}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{28B7CB29-D190-4C0E-88C7-9354FFD25E0F}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{6245A463-086C-4619-BEB3-9A47D8FC8BA9}D:\easysetupassistant\wr1042n\easysetupassistant.exe" = protocol=6 | dir=in | app=d:\easysetupassistant\wr1042n\easysetupassistant.exe |
"TCP Query User{653A5820-9E7C-4E4B-A736-99EDD604EF6E}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{86452232-899E-44AF-A2FB-C55C33D43657}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{8B386397-5E94-4B7F-84DD-AEBA372DFC2C}C:\program files\bitlord\bitlord.exe" = protocol=6 | dir=in | app=c:\program files\bitlord\bitlord.exe |
"TCP Query User{99BA6148-CD7D-4B3D-9638-C581F1447A8B}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{9AD4F499-0A45-40A1-B9D5-4C3B8B0915E1}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{B5003677-B781-4D5B-B780-2347705DB50B}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{D2301DA9-71A0-4B05-B2AE-DA917A068564}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{1C9EDDC1-B533-420C-BCC1-58BD929A1CA8}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{23C283DE-55B0-4374-B5F9-0A2EC2C94A6C}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{44C63CA4-EDD4-49E8-9B77-D20897CA4074}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{4EEA6197-56A8-4AA5-B8A6-E63763991910}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{4FAB1EE6-6419-493B-B32A-ECCDFB2FBF87}C:\program files\bitlord\bitlord.exe" = protocol=17 | dir=in | app=c:\program files\bitlord\bitlord.exe |
"UDP Query User{9522B853-7F53-41FE-92FA-7B744B66E8CF}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{B45FC253-A98D-43B9-9F25-6AE0630095E8}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{C2A0B449-17A6-4381-A009-09DF8B58EB09}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{DBF63FEC-FAE7-4CFC-BBA1-6376156EA86F}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{E79DE39F-1E82-426A-9BEC-5AFC36674505}D:\easysetupassistant\wr1042n\easysetupassistant.exe" = protocol=17 | dir=in | app=d:\easysetupassistant\wr1042n\easysetupassistant.exe |
"UDP Query User{EC5BA1CC-01E9-4E27-89D3-FC14F38C34DD}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09764316-ABC4-4469-AD5B-D3EACE45EE3D}" = Drivers For Free
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.0
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 51
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{312F0FE4-11A7-4D46-918B-24B3713E0E15}" = ESET NOD32 Antivirus
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3E8DE1A6-B365-4FF6-B917-2892A34990E8}" = LG USB Modem Drivers
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F2442B7-A89E-42A4-8F0E-6937499855CA}" = HL-1110 series
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}" = Epson Event Manager
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_ENTERPRISE_{0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_ENTERPRISE_{8382BA92-20E3-47B6-971B-F673F0492D4E}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_ENTERPRISE_{4754EB3B-ED3D-4095-A2FD-684A3058A4FF}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}" = Epson Easy Photo Print 2
"{A50DE037-B5C0-4C8A-8049-B0C576B313D1}" = Google+ Auto Backup
"{AC76BA86-7AD7-1051-7B44-AA1000000001}" = Adobe Reader X (10.1.13) - Slovak
"{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
"{D6D5CB84-0E6E-4E69-B300-C690B6911051}" = Nero 8
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"Anonymity 4 Proxy_is1" = Anonymity 4 Proxy version 2.8
"BitLord" = BitLord 2.2
"CCleaner" = CCleaner
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.2.2
"DreamAqua" = Dream Aquarium
"Driver Booster_is1" = Driver Booster
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"EPSON SX130 Series" = EPSON SX130 Series Printer Uninstall
"EPSON SX130 Series Useg" = Používateľská príručka EPSON SX130 Series
"Fish Tycoon ." = Fish Tycoon .
"Game Booster_is1" = Game Booster 3
"GIMP-2_is1" = GIMP 2.8.8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"IObit Surfing Protection_is1" = Surfing Protection
"IObit_DriverBooster_is1" = Driver Booster
"IObitUninstall" = IObit Uninstaller
"IrfanView" = IrfanView (remove only)
"LG Internet Kit" = LG Internet Kit
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 2.0.4.1028
"Mozilla Firefox 34.0.5 (x86 sk)" = Mozilla Firefox 34.0.5 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Mp3 Codec" = Mpeg Layer3 Codec FHG-Radium v1.263
"Pass Finder" = Pass Finder Wizard
"Picasa 3" = Picasa 3
"Skype Hacker v2.4.6" = Skype Hacker v2.4.6
"Smart Defrag 3_is1" = Smart Defrag 3
"TNod" = TNod User & Password Finder
"WinRAR archiver" = WinRAR archiver
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16. 12. 2014 19:54:02 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 17. 12. 2014 18:50:37 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 18. 12. 2014 19:27:32 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 19. 12. 2014 2:39:39 | Computer Name = Lančin-PC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: NMIndexStoreSvr.exe, verzia: 3.3.3.0, časová
značka: 0x47c6bd1b Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x03030303 Identifikácia chybného
procesu: 0x594 Čas spustenia chybnej aplikácie: 0x01d01b56871268d0 Cesta chybnej
aplikácie: C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe Cesta chybného
modulu: unknown Identifikácia hlásenia: cda8e094-8749-11e4-b812-1c6f65cca9c9
Error - 19. 12. 2014 18:49:17 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 20. 12. 2014 19:44:11 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 21. 12. 2014 19:29:13 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
Error - 22. 12. 2014 5:13:10 | Computer Name = Lančin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 22. 12. 2014 5:13:10 | Computer Name = Lančin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 22. 12. 2014 20:25:20 | Computer Name = Lančin-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files\IObit\driver
booster\DpInst\x64\dpinst.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.
[ System Events ]
Error - 23. 12. 2014 3:42:32 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:39 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:47 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:42:55 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:03 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:11 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:18 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:26 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:33 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
Error - 23. 12. 2014 3:43:41 | Computer Name = Lančin-PC | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
< End of report >
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu, celé zle..
Aktualizuj javu:
[url= http://www.oracle.com/technetwork/java/ ... 33155.html
]Java SE Runtime Environment 8[/url]
Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-8-windows-i586-p.exe nebo
jre-8-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
[url= http://www.oracle.com/technetwork/java/ ... 33155.html
]Java SE Runtime Environment 8[/url]
Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-8-windows-i586-p.exe nebo
jre-8-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
DRV - (gdrv) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope = {674E7445-6FDF-4580-86C1-6509D44E87AD}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" =http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\..\SearchScopes\{674E7445-6FDF-4580-86C1-6509D44E87AD}: "URL" =http://www.google.co.uk/search?hl=en&q={searchTerms}&meta=
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:2.3
FF - prefs.js..extensions.enabledAddons: %7B71bfcce7-421d-4042-95d4-a585a821cbca%7D:2.6.34
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5
[2011/09/23 14:33:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Extensions
[2014/12/05 07:56:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\Firefox\Profiles\9mn8fqyf.default-1388217033647\extensions
[2014/10/11 07:20:05 | 001,006,177 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\antigameorigin@antigame.de.xpi
[2014/11/25 18:33:31 | 000,220,727 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{71bfcce7-421d-4042-95d4-a585a821cbca}.xpi
[2014/11/13 06:48:25 | 000,979,699 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/10/30 08:38:39 | 000,304,000 | ---- | M] () (No name found) -- C:\Users\Lančin\AppData\Roaming\mozilla\firefox\profiles\9mn8fqyf.default-1388217033647\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/12/09 15:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{71BFCCE7-421D-4042-95D4-A585A821CBCA}.XPI
File not found (No name found) -- C:\USERS\LANÄŤIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\{E4A8A97B-F2ED-450B-B12D-EE082BA24781}.XPI
File not found (No name found) -- C:\USERS\LANČIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9MN8FQYF.DEFAULT-1388217033647\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
O4 - HKLM..\RunOnce: [BrUrl] C:\Windows\System32\url.dll (Microsoft Corporation)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate]
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Program Files\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\System32\ŮÚŰÜÝŢßŔÁÂĂÄĹĆÇČÉĘËĚÍÎĎĐŃŇÓÔŐÖ÷ŘŮÚŰÜÝŢ
C:\Users\Lančin\AppData\Roaming\temp.ini
C:\Users\Lančin\AppData\Roaming\inst.exe
:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 89 hostů