Prosím o kontrolu logu
Re: Prosím o kontrolu logu
Může mi tohle někdo vysvětlit? Opět váš odkaz odkazuje na setup.exe až po několikaterém kliknutí se stáhne správný soubor.
To bude nějaký problém u mě jak to tak vypadá :/
Re: Prosím o kontrolu logu
ComboFix 13-01-26.02 - Jumbo 26.01.2013 10:17:40.3.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4095.2140 [GMT 1:00]
Spuštěný z: c:\users\Jumbo\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Jumbo\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-26 do 2013-01-26 )))))))))))))))))))))))))))))))
.
.
2017-03-06 21:27 . 2017-03-06 21:27 -------- d-----w- c:\program files (x86)\Lavalys
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Robin\AppData\Local\temp
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Guest\AppData\Local\temp
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-23 13:24 . 2013-01-23 13:24 -------- d-----w- c:\programdata\CLSoft LTD
2013-01-23 13:23 . 2013-01-23 17:09 -------- d-----w- c:\programdata\InstallMate
2013-01-23 07:52 . 2013-01-23 07:52 -------- d-----w- c:\users\Jumbo\AppData\Local\Programs
2013-01-22 14:49 . 2013-01-22 14:49 388096 ----a-r- c:\users\Jumbo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-01-22 14:49 . 2013-01-22 14:49 -------- d-----w- c:\program files (x86)\Trend Micro
2013-01-12 20:27 . 2013-01-12 20:27 15739912 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-01-12 19:48 . 2013-01-12 19:48 -------- d-----w- c:\programdata\Sony Corporation
2013-01-12 19:45 . 2013-01-12 19:46 -------- d-----w- c:\program files (x86)\Sony Media Go Install
2013-01-12 19:45 . 2013-01-12 19:45 -------- d-----w- c:\users\Jumbo\AppData\Roaming\Sony
2013-01-09 06:30 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-09 06:30 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-09 06:30 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
2013-01-09 06:30 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
2013-01-09 06:30 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
2013-01-09 06:30 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-01-09 06:30 . 2012-11-20 05:48 307200 ----a-w- c:\windows\system32\ncrypt.dll
2013-01-09 06:30 . 2012-11-20 04:51 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2013-01-09 06:30 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-01-09 06:30 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-12-28 16:10 . 2012-12-28 16:10 -------- d-----w- c:\program files (x86)\Convert WAV To MP3
2012-12-27 20:11 . 2013-01-12 19:09 -------- d-----w- c:\users\Jumbo\AppData\Roaming\vlc
2012-12-27 20:11 . 2012-12-27 20:11 -------- d-----w- c:\program files (x86)\VideoLAN
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-12 20:27 . 2012-04-04 10:59 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-12 20:27 . 2011-05-16 15:39 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-09 22:35 . 2010-02-23 22:14 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-08 05:32 . 2013-01-26 07:32 9161176 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC81C395-54D7-4C92-9F52-D4F9AFC05A59}\mpengine.dll
2012-12-16 17:11 . 2012-12-21 23:39 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-21 23:39 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 23:39 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-21 23:39 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 15:49 . 2010-05-05 13:45 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-12 21:46 . 2012-12-12 21:46 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2012-12-12 21:46 . 2012-12-12 21:46 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2012-11-14 07:06 . 2012-12-13 00:11 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-13 00:11 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-13 00:11 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-13 00:11 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-13 00:11 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-13 00:11 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-13 00:11 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-13 00:11 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-13 00:11 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-13 00:11 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-13 00:11 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-13 00:11 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-13 00:11 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-13 00:11 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-13 00:11 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-13 00:11 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-13 00:11 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-13 00:11 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-13 00:11 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-13 00:11 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-13 00:11 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-13 00:11 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-09 05:45 . 2012-12-12 08:09 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 08:09 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-08 10:29 . 2012-11-08 10:29 1402312 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-11-02 05:59 . 2012-12-12 08:09 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-11-02 05:11 . 2012-12-12 08:09 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-12-11 969104]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"SoundMAXPnP"="c:\program files (x86)\Analog Devices\Core\smax4pnp.exe" [2009-06-05 1310720]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"googletalk"="c:\program files (x86)\Google\Google Talk\googletalk.exe" [2007-01-01 3739648]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-24 1207312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-03-30 26752]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-12-12 14448]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-28 1255736]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
S2 602XML Updater;602Updater;c:\program files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-04-06 236544]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-08 974944]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 2465712]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-09-28 395264]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-12 12:43 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 20:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 319488]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 4030008]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mStart Page = hxxp://websearch.soft-quick.info/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Stahnou vse FlashGet3 - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: Stahnout FlashGet3 - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: Stáhnout pomocí &BitSpiritu - c:\program files (x86)\BitSpirit\bsurl.htm
IE: ????3?? - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 176.12.112.2 176.12.112.1
FF - ProfilePath - c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - ExtSQL: 2012-12-19 11:11; 50d192cab74c8@50d192cab7501.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50d192cab74c8@50d192cab7501.com
FF - ExtSQL: 2013-01-23 14:47; 50ffe9f66d571@50ffe9f66d5aa.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffe9f66d571@50ffe9f66d5aa.com
FF - ExtSQL: 2013-01-23 15:05; 50ffee34e1e73@50ffee34e1ead.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffee34e1e73@50ffee34e1ead.com
FF - ExtSQL: 2013-01-23 18:33; 51001ed9cc2e5@51001ed9cc31d.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\51001ed9cc2e5@51001ed9cc31d.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{0A8A4520-D38C-5DC4-D1B4-54348ECBAC7A} - (no file)
BHO-{3D9312D4-3F19-B2A8-1049-E5BA63197F17} - (no file)
BHO-{A755F07C-C81B-16F0-673B-C4941EAD5283} - (no file)
BHO-{F780EA3F-1137-EDB2-7209-82BB1E9DBFCE} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
AddRemove-Painkiller Hell and Damnation_is1 - k:\games\Painkiller Hell and Damnation\unins000.exe
AddRemove-Saints Row The Third_is1 - k:\games\Saints Row The Third\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\Jumbo\\AppData\\Roaming\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\Jumbo\\AppData\\Roaming\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\SecuROM\License information*]
"datasecu"=hex:1f,54,e1,70,86,94,30,84,6a,be,d8,ad,46,d5,e5,a9,d8,c1,a7,50,47,
2b,05,44,f5,13,95,d2,7c,71,41,28,f4,50,bd,2d,30,b2,09,07,06,e2,1c,c1,fe,10,\
"rkeysecu"=hex:fb,6f,a7,34,1e,1d,9f,8c,96,71,a5,aa,ec,a9,99,41
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\SysWOW64\PnkBstrA.exe
c:\programdata\Premium\OptimizerPro\OptimizerPro.exe
c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe
c:\program files (x86)\Hard Disk Sentinel\HDSentinel.exe
c:\program files (x86)\TeamViewer\Version8\tv_w32.exe
c:\program files (x86)\AMD AVT\bin\kdbsync.exe
c:\program files\Logitech\SetPoint\x86\SetPoint32.exe
c:\windows\SysWOW64\WerFault.exe
.
**************************************************************************
.
Celkový čas: 2013-01-26 10:30:36 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-26 09:30
.
Před spuštěním: 2 372 489 216
Po spuštění: 2 286 542 848
.
- - End Of File - - 495C98BF88CEED9D0DD908B39E2BC79C
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4095.2140 [GMT 1:00]
Spuštěný z: c:\users\Jumbo\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Jumbo\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-26 do 2013-01-26 )))))))))))))))))))))))))))))))
.
.
2017-03-06 21:27 . 2017-03-06 21:27 -------- d-----w- c:\program files (x86)\Lavalys
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Robin\AppData\Local\temp
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Guest\AppData\Local\temp
2013-01-26 09:23 . 2013-01-26 09:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-23 13:24 . 2013-01-23 13:24 -------- d-----w- c:\programdata\CLSoft LTD
2013-01-23 13:23 . 2013-01-23 17:09 -------- d-----w- c:\programdata\InstallMate
2013-01-23 07:52 . 2013-01-23 07:52 -------- d-----w- c:\users\Jumbo\AppData\Local\Programs
2013-01-22 14:49 . 2013-01-22 14:49 388096 ----a-r- c:\users\Jumbo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-01-22 14:49 . 2013-01-22 14:49 -------- d-----w- c:\program files (x86)\Trend Micro
2013-01-12 20:27 . 2013-01-12 20:27 15739912 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-01-12 19:48 . 2013-01-12 19:48 -------- d-----w- c:\programdata\Sony Corporation
2013-01-12 19:45 . 2013-01-12 19:46 -------- d-----w- c:\program files (x86)\Sony Media Go Install
2013-01-12 19:45 . 2013-01-12 19:45 -------- d-----w- c:\users\Jumbo\AppData\Roaming\Sony
2013-01-09 06:30 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-09 06:30 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-09 06:30 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
2013-01-09 06:30 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
2013-01-09 06:30 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
2013-01-09 06:30 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-01-09 06:30 . 2012-11-20 05:48 307200 ----a-w- c:\windows\system32\ncrypt.dll
2013-01-09 06:30 . 2012-11-20 04:51 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2013-01-09 06:30 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-01-09 06:30 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-12-28 16:10 . 2012-12-28 16:10 -------- d-----w- c:\program files (x86)\Convert WAV To MP3
2012-12-27 20:11 . 2013-01-12 19:09 -------- d-----w- c:\users\Jumbo\AppData\Roaming\vlc
2012-12-27 20:11 . 2012-12-27 20:11 -------- d-----w- c:\program files (x86)\VideoLAN
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-12 20:27 . 2012-04-04 10:59 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-12 20:27 . 2011-05-16 15:39 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-09 22:35 . 2010-02-23 22:14 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-08 05:32 . 2013-01-26 07:32 9161176 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC81C395-54D7-4C92-9F52-D4F9AFC05A59}\mpengine.dll
2012-12-16 17:11 . 2012-12-21 23:39 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-21 23:39 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 23:39 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-21 23:39 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-14 15:49 . 2010-05-05 13:45 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-12 21:46 . 2012-12-12 21:46 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2012-12-12 21:46 . 2012-12-12 21:46 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2012-11-14 07:06 . 2012-12-13 00:11 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-13 00:11 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-13 00:11 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-13 00:11 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-13 00:11 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-13 00:11 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-13 00:11 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-13 00:11 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-13 00:11 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-13 00:11 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-13 00:11 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-13 00:11 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-13 00:11 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-13 00:11 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-13 00:11 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-13 00:11 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-13 00:11 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-13 00:11 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-13 00:11 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-13 00:11 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-13 00:11 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-13 00:11 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-09 05:45 . 2012-12-12 08:09 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 08:09 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-08 10:29 . 2012-11-08 10:29 1402312 ----a-w- c:\windows\SysWow64\msxml4.dll
2012-11-02 05:59 . 2012-12-12 08:09 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-11-02 05:11 . 2012-12-12 08:09 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-12-11 969104]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"SoundMAXPnP"="c:\program files (x86)\Analog Devices\Core\smax4pnp.exe" [2009-06-05 1310720]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"googletalk"="c:\program files (x86)\Google\Google Talk\googletalk.exe" [2007-01-01 3739648]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-24 1207312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-03-30 26752]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-12-12 14448]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-28 1255736]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
S2 602XML Updater;602Updater;c:\program files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-04-06 236544]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-08 974944]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 2465712]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-09-28 395264]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-12 12:43 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 20:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 319488]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 4030008]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mStart Page = hxxp://websearch.soft-quick.info/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Stahnou vse FlashGet3 - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: Stahnout FlashGet3 - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: Stáhnout pomocí &BitSpiritu - c:\program files (x86)\BitSpirit\bsurl.htm
IE: ????3?? - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 176.12.112.2 176.12.112.1
FF - ProfilePath - c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - ExtSQL: 2012-12-19 11:11; 50d192cab74c8@50d192cab7501.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50d192cab74c8@50d192cab7501.com
FF - ExtSQL: 2013-01-23 14:47; 50ffe9f66d571@50ffe9f66d5aa.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffe9f66d571@50ffe9f66d5aa.com
FF - ExtSQL: 2013-01-23 15:05; 50ffee34e1e73@50ffee34e1ead.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffee34e1e73@50ffee34e1ead.com
FF - ExtSQL: 2013-01-23 18:33; 51001ed9cc2e5@51001ed9cc31d.com; c:\users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\51001ed9cc2e5@51001ed9cc31d.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{0A8A4520-D38C-5DC4-D1B4-54348ECBAC7A} - (no file)
BHO-{3D9312D4-3F19-B2A8-1049-E5BA63197F17} - (no file)
BHO-{A755F07C-C81B-16F0-673B-C4941EAD5283} - (no file)
BHO-{F780EA3F-1137-EDB2-7209-82BB1E9DBFCE} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
AddRemove-Painkiller Hell and Damnation_is1 - k:\games\Painkiller Hell and Damnation\unins000.exe
AddRemove-Saints Row The Third_is1 - k:\games\Saints Row The Third\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\Jumbo\\AppData\\Roaming\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\Jumbo\\AppData\\Roaming\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_USERS\S-1-5-21-1720165986-947344214-3593531314-1001\Software\SecuROM\License information*]
"datasecu"=hex:1f,54,e1,70,86,94,30,84,6a,be,d8,ad,46,d5,e5,a9,d8,c1,a7,50,47,
2b,05,44,f5,13,95,d2,7c,71,41,28,f4,50,bd,2d,30,b2,09,07,06,e2,1c,c1,fe,10,\
"rkeysecu"=hex:fb,6f,a7,34,1e,1d,9f,8c,96,71,a5,aa,ec,a9,99,41
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\SysWOW64\PnkBstrA.exe
c:\programdata\Premium\OptimizerPro\OptimizerPro.exe
c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe
c:\program files (x86)\Hard Disk Sentinel\HDSentinel.exe
c:\program files (x86)\TeamViewer\Version8\tv_w32.exe
c:\program files (x86)\AMD AVT\bin\kdbsync.exe
c:\program files\Logitech\SetPoint\x86\SetPoint32.exe
c:\windows\SysWOW64\WerFault.exe
.
**************************************************************************
.
Celkový čas: 2013-01-26 10:30:36 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-26 09:30
.
Před spuštěním: 2 372 489 216
Po spuštění: 2 286 542 848
.
- - End Of File - - 495C98BF88CEED9D0DD908B39E2BC79C
Re: Prosím o kontrolu logu
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:04:30, on 26.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Windows\PixArt\Pac7302\Monitor.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\totalcmd\TOTALCMD.EXE
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.soft-quick.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: continuetosave - {0A8A4520-D38C-5DC4-D1B4-54348ECBAC7A} - (no file)
O2 - BHO: continuetosave - {3D9312D4-3F19-B2A8-1049-E5BA63197F17} - (no file)
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SaveAs - {A755F07C-C81B-16F0-673B-C4941EAD5283} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: TopSpaceHelper - {C8625893-2C0F-4484-8C18-52B00D5A8BB9} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: continuetosave - {F780EA3F-1137-EDB2-7209-82BB1E9DBFCE} - (no file)
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10041 bytes
Scan saved at 18:04:30, on 26.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Windows\PixArt\Pac7302\Monitor.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\totalcmd\TOTALCMD.EXE
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.soft-quick.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: continuetosave - {0A8A4520-D38C-5DC4-D1B4-54348ECBAC7A} - (no file)
O2 - BHO: continuetosave - {3D9312D4-3F19-B2A8-1049-E5BA63197F17} - (no file)
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SaveAs - {A755F07C-C81B-16F0-673B-C4941EAD5283} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: TopSpaceHelper - {C8625893-2C0F-4484-8C18-52B00D5A8BB9} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: continuetosave - {F780EA3F-1137-EDB2-7209-82BB1E9DBFCE} - (no file)
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10041 bytes
Re: Prosím o kontrolu logu
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-26 18:08:09
-----------------------------
18:08:09.412 OS Version: Windows x64 6.1.7601 Service Pack 1
18:08:09.413 Number of processors: 2 586 0x1706
18:08:09.413 ComputerName: JUMBO-PC UserName: Jumbo
18:08:11.189 Initialize success
18:08:17.589 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
18:08:17.591 Disk 0 Vendor: ST3500320AS SD1A Size: 476940MB BusType: 3
18:08:17.592 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T1L0-5
18:08:17.594 Disk 1 Vendor: SAMSUNG_HD103SI 1AG01118 Size: 953869MB BusType: 3
18:08:17.597 Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP2T0L0-2
18:08:17.599 Disk 2 Vendor: Maxtor_6V200E0 VA111900 Size: 194481MB BusType: 3
18:08:17.608 Disk 2 MBR read successfully
18:08:17.610 Disk 2 MBR scan
18:08:17.614 Disk 2 Windows 7 default MBR code
18:08:17.622 Disk 2 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
18:08:17.631 Disk 2 Partition 2 00 07 HPFS/NTFS NTFS 94379 MB offset 206848
18:08:17.647 Disk 2 Partition 3 00 07 HPFS/NTFS NTFS 100000 MB offset 193495040
18:08:17.684 Disk 2 scanning C:\Windows\system32\drivers
18:08:24.884 Service scanning
18:08:39.235 Modules scanning
18:08:39.242 Disk 2 trace - called modules:
18:08:39.253 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:08:39.257 1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa800491a520]
18:08:39.260 3 CLASSPNP.SYS[fffff880013d043f] -> nt!IofCallDriver -> [0xfffffa8004446520]
18:08:39.264 5 ACPI.sys[fffff88000edd7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8004442680]
18:08:39.267 Scan finished successfully
18:09:30.919 Disk 2 MBR has been saved successfully to "C:\Users\Jumbo\Desktop\MBR.dat"
18:09:30.925 The log file has been saved successfully to "C:\Users\Jumbo\Desktop\aswMBR.txt"
Run date: 2013-01-26 18:08:09
-----------------------------
18:08:09.412 OS Version: Windows x64 6.1.7601 Service Pack 1
18:08:09.413 Number of processors: 2 586 0x1706
18:08:09.413 ComputerName: JUMBO-PC UserName: Jumbo
18:08:11.189 Initialize success
18:08:17.589 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
18:08:17.591 Disk 0 Vendor: ST3500320AS SD1A Size: 476940MB BusType: 3
18:08:17.592 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T1L0-5
18:08:17.594 Disk 1 Vendor: SAMSUNG_HD103SI 1AG01118 Size: 953869MB BusType: 3
18:08:17.597 Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP2T0L0-2
18:08:17.599 Disk 2 Vendor: Maxtor_6V200E0 VA111900 Size: 194481MB BusType: 3
18:08:17.608 Disk 2 MBR read successfully
18:08:17.610 Disk 2 MBR scan
18:08:17.614 Disk 2 Windows 7 default MBR code
18:08:17.622 Disk 2 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
18:08:17.631 Disk 2 Partition 2 00 07 HPFS/NTFS NTFS 94379 MB offset 206848
18:08:17.647 Disk 2 Partition 3 00 07 HPFS/NTFS NTFS 100000 MB offset 193495040
18:08:17.684 Disk 2 scanning C:\Windows\system32\drivers
18:08:24.884 Service scanning
18:08:39.235 Modules scanning
18:08:39.242 Disk 2 trace - called modules:
18:08:39.253 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:08:39.257 1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa800491a520]
18:08:39.260 3 CLASSPNP.SYS[fffff880013d043f] -> nt!IofCallDriver -> [0xfffffa8004446520]
18:08:39.264 5 ACPI.sys[fffff88000edd7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8004442680]
18:08:39.267 Scan finished successfully
18:09:30.919 Disk 2 MBR has been saved successfully to "C:\Users\Jumbo\Desktop\MBR.dat"
18:09:30.925 The log file has been saved successfully to "C:\Users\Jumbo\Desktop\aswMBR.txt"
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Návod
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.soft-quick.info/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: continuetosave - {0A8A4520-D38C-5DC4-D1B4-54348ECBAC7A} - (no file)
O2 - BHO: continuetosave - {3D9312D4-3F19-B2A8-1049-E5BA63197F17} - (no file)
O2 - BHO: SaveAs - {A755F07C-C81B-16F0-673B-C4941EAD5283} - (no file)
O2 - BHO: TopSpaceHelper - {C8625893-2C0F-4484-8C18-52B00D5A8BB9} - (no file)
O2 - BHO: continuetosave - {F780EA3F-1137-EDB2-7209-82BB1E9DBFCE} - (no file)
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 56,03% Memory free
8,00 Gb Paging File | 5,90 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Computer Name: JUMBO-PC | User Name: Jumbo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Jumbo\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - C:\ProgramData\Premium\OptimizerPro\OptimizerPro.exe ()
PRC - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe (Software602 a.s.)
PRC - C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (H.D.S. Hungary)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
PRC - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe ()
PRC - C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe ()
========== Services (SafeList) ==========
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
SRV:64bit: - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (PanService) -- C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
SRV - (Sony PC Companion) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (602XML Updater) -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe (Software602 a.s.)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (atksgt) -- C:\Windows\SysNative\drivers\atksgt.sys ()
DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\drivers\lirsgt.sys ()
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (L8042Kbd) -- C:\Windows\SysNative\drivers\L8042Kbd.sys (Logitech, Inc.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.)
DRV:64bit: - (PAC7302) -- C:\Windows\SysNative\drivers\PAC7302.SYS (PixArt Imaging Inc.)
DRV:64bit: - (MarvinBus) -- C:\Windows\SysNative\drivers\MarvinBus64.sys (Pinnacle Systems GmbH)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV - (EverestDriver) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F2 5E 4F 5E B0 B4 CA 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "WebSearch"
FF - prefs.js..browser.search.defaultenginename,S: S", "WebSearch"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.order.1: "WebSearch"
FF - prefs.js..browser.search.order.1,S: S", "WebSearch"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.selectedEngine,S: S", "WebSearch"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: video.downloader.plugin@ffpimp.com:12.9.6
FF - prefs.js..extensions.enabledAddons: {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}:3.5
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7
FF - prefs.js..extensions.enabledAddons: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.1
FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:15.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Jumbo\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2012.03.01 19:43:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.05 19:28:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.08.12 07:39:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2012.05.31 16:29:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012.03.01 19:43:09 | 000,000,000 | ---D | M]
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.04.09 19:59:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2013.01.23 18:24:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions
[2011.12.18 21:27:54 | 000,000,000 | ---D | M] (Personas Rotator) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{6e73f6b7-b9ab-44b8-b744-6393e3c2e351}
[2011.12.18 21:27:56 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012.12.19 10:54:05 | 000,000,000 | ---D | M] (SaveAs) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50d192cab74c8@50d192cab7501.com
[2013.01.23 14:27:14 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffe9f66d571@50ffe9f66d5aa.com
[2013.01.23 14:43:35 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffee34e1e73@50ffee34e1ead.com
[2013.01.23 18:24:27 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\51001ed9cc2e5@51001ed9cc31d.com
[2012.03.31 21:43:08 | 000,000,000 | ---D | M] (Download Youtube Videos +) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\video.downloader.plugin@ffpimp.com
[2011.12.18 21:27:59 | 000,644,152 | ---- | M] () (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.03.07 13:08:04 | 000,002,432 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\s-amazon-byskipity-int.xml
[2012.03.08 21:50:16 | 000,002,710 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\skipity-search.xml
[2013.01.23 18:09:57 | 000,000,553 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\WebSearch.xml
[2012.06.15 07:17:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.12.19 08:50:57 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.09.05 19:28:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012.09.05 19:28:05 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2007.04.10 16:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll
[2011.03.12 13:40:09 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2007.03.22 19:23:30 | 000,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL
[2012.03.26 16:41:34 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll
[2012.05.31 16:29:13 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll
[2012.05.31 16:29:13 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll
[2012.09.05 19:28:03 | 000,003,581 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
[2012.04.21 04:17:43 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2012.04.21 04:17:43 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.04.21 04:17:44 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2012.04.21 04:17:44 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.04.21 04:17:44 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage:
CHR - default_search_provider: WebSearch (Enabled)
CHR - default_search_provider: search_url = http://websearch.soft-quick.info/?l=1&q={searchTerms}
CHR - default_search_provider: suggest_url = http://websearch.soft-quick.info/?l=1&q={searchTerms},
CHR - homepage:
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\Jumbo\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Adblock Plus = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3.4_0\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjnhhhgadnbmikpnddbdooaknmbcnkbh\1\
CHR - Extension: Hedgehog in the fog = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg\3_0\
CHR - Extension: Skype Click to Call = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkchaopldcddmfchaoeenoecaeapabic\1\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poignhfpfjhdofojnoecfcehanomdgid\1\
O1 HOSTS File: ([2013.01.26 10:24:55 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8:64bit: - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8:64bit: - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O8:64bit: - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8:64bit: - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O8 - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 176.12.112.2 176.12.112.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A8DBCD89-9B33-4F99-984F-477F9FEE2D3E}: DhcpNameServer = 176.12.112.2 176.12.112.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C378114E-4B29-46DA-9AB9-006713672AE7}: DhcpNameServer = 176.12.112.2 176.12.112.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\http\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\https\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files (x86)\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corp.)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 56,03% Memory free
8,00 Gb Paging File | 5,90 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Computer Name: JUMBO-PC | User Name: Jumbo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Jumbo\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe (TeamViewer GmbH)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - C:\ProgramData\Premium\OptimizerPro\OptimizerPro.exe ()
PRC - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe (Software602 a.s.)
PRC - C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (H.D.S. Hungary)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
PRC - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe ()
PRC - C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe ()
========== Services (SafeList) ==========
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
SRV:64bit: - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AEADIFilters) -- C:\Windows\SysNative\AEADISRV.EXE (Andrea Electronics Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (PanService) -- C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
SRV - (Sony PC Companion) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe (Avanquest Software)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (602XML Updater) -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe (Software602 a.s.)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (atksgt) -- C:\Windows\SysNative\drivers\atksgt.sys ()
DRV:64bit: - (lirsgt) -- C:\Windows\SysNative\drivers\lirsgt.sys ()
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (L8042Kbd) -- C:\Windows\SysNative\drivers\L8042Kbd.sys (Logitech, Inc.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (ADIHdAudAddService) -- C:\Windows\SysNative\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.)
DRV:64bit: - (PAC7302) -- C:\Windows\SysNative\drivers\PAC7302.SYS (PixArt Imaging Inc.)
DRV:64bit: - (MarvinBus) -- C:\Windows\SysNative\drivers\MarvinBus64.sys (Pinnacle Systems GmbH)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV - (EverestDriver) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 ()
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F2 5E 4F 5E B0 B4 CA 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "WebSearch"
FF - prefs.js..browser.search.defaultenginename,S: S", "WebSearch"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.order.1: "WebSearch"
FF - prefs.js..browser.search.order.1,S: S", "WebSearch"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.selectedEngine,S: S", "WebSearch"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: video.downloader.plugin@ffpimp.com:12.9.6
FF - prefs.js..extensions.enabledAddons: {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}:3.5
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7
FF - prefs.js..extensions.enabledAddons: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.1
FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:15.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Jumbo\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2012.03.01 19:43:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.05 19:28:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012.08.12 07:39:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2012.05.31 16:29:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012.03.01 19:43:09 | 000,000,000 | ---D | M]
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.04.09 19:59:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2013.01.23 18:24:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions
[2011.12.18 21:27:54 | 000,000,000 | ---D | M] (Personas Rotator) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{6e73f6b7-b9ab-44b8-b744-6393e3c2e351}
[2011.12.18 21:27:56 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012.12.19 10:54:05 | 000,000,000 | ---D | M] (SaveAs) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50d192cab74c8@50d192cab7501.com
[2013.01.23 14:27:14 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffe9f66d571@50ffe9f66d5aa.com
[2013.01.23 14:43:35 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\50ffee34e1e73@50ffee34e1ead.com
[2013.01.23 18:24:27 | 000,000,000 | ---D | M] (continuetosave) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\51001ed9cc2e5@51001ed9cc31d.com
[2012.03.31 21:43:08 | 000,000,000 | ---D | M] (Download Youtube Videos +) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\video.downloader.plugin@ffpimp.com
[2011.12.18 21:27:59 | 000,644,152 | ---- | M] () (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.03.07 13:08:04 | 000,002,432 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\s-amazon-byskipity-int.xml
[2012.03.08 21:50:16 | 000,002,710 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\skipity-search.xml
[2013.01.23 18:09:57 | 000,000,553 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\WebSearch.xml
[2012.06.15 07:17:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.12.19 08:50:57 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.09.05 19:28:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012.09.05 19:28:05 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2007.04.10 16:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll
[2011.03.12 13:40:09 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2007.03.22 19:23:30 | 000,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL
[2012.03.26 16:41:34 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll
[2012.05.31 16:29:12 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll
[2012.05.31 16:29:13 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll
[2012.05.31 16:29:13 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll
[2012.09.05 19:28:03 | 000,003,581 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
[2012.04.21 04:17:43 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2012.04.21 04:17:43 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.04.21 04:17:44 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2012.04.21 04:17:44 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.04.21 04:17:44 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage:
CHR - default_search_provider: WebSearch (Enabled)
CHR - default_search_provider: search_url = http://websearch.soft-quick.info/?l=1&q={searchTerms}
CHR - default_search_provider: suggest_url = http://websearch.soft-quick.info/?l=1&q={searchTerms},
CHR - homepage:
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\gcswf32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Users\Jumbo\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Adblock Plus = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3.4_0\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjnhhhgadnbmikpnddbdooaknmbcnkbh\1\
CHR - Extension: Hedgehog in the fog = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg\3_0\
CHR - Extension: Skype Click to Call = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkchaopldcddmfchaoeenoecaeapabic\1\
CHR - Extension: continuetosave = C:\Users\Jumbo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poignhfpfjhdofojnoecfcehanomdgid\1\
O1 HOSTS File: ([2013.01.26 10:24:55 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8:64bit: - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8:64bit: - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O8:64bit: - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8:64bit: - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O8 - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 176.12.112.2 176.12.112.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A8DBCD89-9B33-4F99-984F-477F9FEE2D3E}: DhcpNameServer = 176.12.112.2 176.12.112.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C378114E-4B29-46DA-9AB9-006713672AE7}: DhcpNameServer = 176.12.112.2 176.12.112.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\http\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\https\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files (x86)\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corp.)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
Re: Prosím o kontrolu logu
========== Files/Folders - Created Within 30 Days ==========
[2017.08.26 07:00:33 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{67DB6F7E-0E28-4A86-9231-794DF08B13E7}
[2017.03.06 22:27:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
[2017.03.06 22:27:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2013.01.28 00:09:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jumbo\Desktop\OTL.exe
[2013.01.26 10:23:11 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.01.23 19:30:34 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.01.23 14:24:22 | 000,000,000 | ---D | C] -- C:\ProgramData\CLSoft LTD
[2013.01.23 14:24:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\continuetosave
[2013.01.23 14:23:51 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013.01.23 09:01:59 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{C5461F59-4385-41A6-9D13-E79C24A90B83}
[2013.01.23 08:52:32 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\Programs
[2013.01.23 08:51:48 | 010,156,344 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jumbo\Desktop\mbam-setup-1.70.0.1100.exe
[2013.01.23 08:50:33 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\Jumbo\Desktop\ATF-Cleaner.exe
[2013.01.22 15:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2013.01.22 15:49:32 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2013.01.22 09:23:21 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\pro vendy
[2013.01.22 09:01:22 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{92AC3B33-5A6F-4816-B3EF-7E135E604B41}
[2013.01.21 21:00:57 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{7DDDFDBF-3F0A-430E-8DE5-1741EBFC7C84}
[2013.01.21 09:00:25 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{B7FDEE9B-79D2-4F3F-8C3E-CFE9DF7832A4}
[2013.01.20 13:51:30 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{9C78075A-15EE-4A7B-AFF6-BEAA475C4845}
[2013.01.19 08:56:45 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{08B961B8-673B-4CE5-815B-71BACD581040}
[2013.01.18 08:56:08 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{7B5DA8C5-2F3D-44EC-8419-0233592E27C3}
[2013.01.17 08:55:31 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{A97EEC6E-E063-44F1-9C62-97976879BCD6}
[2013.01.16 11:58:03 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{DA4395FA-13A4-4461-95FB-58295B061CF4}
[2013.01.15 23:57:38 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{09270E3C-FA1D-4894-A096-698450FB4534}
[2013.01.15 11:57:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{C104B239-3617-4478-A5AA-BF56CC946112}
[2013.01.14 13:10:34 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1BEE0303-8474-4F4D-BDF5-A4B30D56965C}
[2013.01.13 20:49:35 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{00E56DA3-B0D2-46A3-BB38-5502EC251774}
[2013.01.13 08:49:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{3CBA40F6-73B1-4362-BFFA-A2395DEC9AC1}
[2013.01.12 21:27:13 | 015,739,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013.01.12 20:48:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2013.01.12 20:45:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony Media Go Install
[2013.01.12 20:45:42 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Roaming\Sony
[2013.01.12 11:47:21 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{6E36B35D-28B5-45DB-B6BA-FA1E38FD95F0}
[2013.01.11 11:46:44 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{77CC1B05-8FD4-4BF8-AD4A-5ACC492F705A}
[2013.01.10 11:46:07 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{9CD129BF-ED2D-4112-B9A2-AE9FBC2DE73C}
[2013.01.09 09:33:52 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1C9F7EFB-2AE8-49BC-8A24-C83D76083620}
[2013.01.09 07:30:46 | 000,750,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013.01.09 07:30:45 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013.01.09 07:30:32 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013.01.09 07:30:07 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013.01.08 09:33:15 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{3EDEA59A-E1DB-4A0F-B999-52C6BA4792BE}
[2013.01.07 10:03:12 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\bazárek
[2013.01.07 09:32:37 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{F2147072-B7B1-4382-B271-6F72C82789A4}
[2013.01.06 09:32:01 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{D6D6B60D-C7CF-44FC-A8D0-2223E406ADF0}
[2013.01.05 21:51:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\Nová složka (4)
[2013.01.05 21:31:36 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{0494A0B8-5552-43A1-BA8B-E214FBE8B260}
[2013.01.04 09:08:33 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{D6C218A4-6945-431B-9445-E31E3A236DB4}
[2013.01.03 09:53:28 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1AA29D41-D772-4D19-A242-3484BEE6D195}
[2013.01.02 09:52:40 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{58E9D417-AD94-4C3E-8F53-A98EC4CF04E8}
[2013.01.01 19:07:11 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\silvestr
[2012.12.31 09:51:39 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{673AC914-7173-417B-A41F-B08F9885F0A8}
[2012.12.30 15:39:55 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{75378B60-0744-4372-9FAA-1080CA6440DF}
[2012.12.30 10:28:54 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\frymburk
[2012.12.30 03:39:28 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{B9F912E0-B2CE-414A-A7B7-E6790CF7F156}
[2012.12.29 09:21:39 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{15BFAA9B-B4C8-4239-AC6F-9C407CED56AB}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.01.28 00:09:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jumbo\Desktop\OTL.exe
[2013.01.27 23:27:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.01.27 17:04:43 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.01.27 17:04:43 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.27 16:57:37 | 000,000,434 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2013.01.27 16:57:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.01.27 16:56:55 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
[2013.01.27 10:32:06 | 000,148,264 | ---- | M] () -- C:\Users\Jumbo\Desktop\smetanova-porkova-polevka-10139.jpg
[2013.01.26 22:28:12 | 005,797,884 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.01.26 22:28:12 | 002,385,202 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.01.26 22:28:12 | 001,865,808 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.01.26 22:28:12 | 001,801,132 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.01.26 22:28:12 | 000,004,568 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.01.26 18:09:30 | 000,000,512 | ---- | M] () -- C:\Users\Jumbo\Desktop\MBR.dat
[2013.01.26 10:24:55 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013.01.26 10:04:56 | 000,132,939 | ---- | M] () -- C:\Users\Jumbo\Desktop\OTC_cr.jpg
[2013.01.26 10:04:52 | 000,328,380 | ---- | M] () -- C:\Users\Jumbo\Desktop\OTC.jpg
[2013.01.24 18:47:45 | 001,342,872 | ---- | M] () -- C:\Users\Jumbo\Desktop\IMG_0037.JPG
[2013.01.23 19:26:59 | 000,333,411 | ---- | M] () -- C:\Users\Jumbo\Desktop\setup.jpg
[2013.01.23 19:08:16 | 000,306,493 | ---- | M] () -- C:\Users\Jumbo\Desktop\setup.rar
[2013.01.23 13:38:04 | 000,074,823 | ---- | M] () -- C:\Users\Jumbo\Desktop\Výstřižek.JPG
[2013.01.23 09:02:58 | 000,574,315 | ---- | M] () -- C:\Users\Jumbo\Desktop\adwcleaner.exe
[2013.01.23 08:52:42 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.01.23 08:52:12 | 010,156,344 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jumbo\Desktop\mbam-setup-1.70.0.1100.exe
[2013.01.23 08:50:35 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\Jumbo\Desktop\ATF-Cleaner.exe
[2013.01.22 15:49:32 | 000,002,975 | ---- | M] () -- C:\Users\Jumbo\Desktop\HiJackThis.lnk
[2013.01.22 15:48:40 | 001,402,880 | ---- | M] () -- C:\Users\Jumbo\Desktop\HiJackThis.msi
[2013.01.12 21:27:27 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013.01.12 21:27:27 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.01.12 21:27:13 | 015,739,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013.01.10 09:57:28 | 004,930,888 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.01.08 09:34:59 | 030,840,513 | ---- | M] () -- C:\Users\Jumbo\Desktop\Mačingová,-Antonia---Zhubněte-jednou-provždy.pdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.01.27 10:31:06 | 000,148,264 | ---- | C] () -- C:\Users\Jumbo\Desktop\smetanova-porkova-polevka-10139.jpg
[2013.01.26 18:09:30 | 000,000,512 | ---- | C] () -- C:\Users\Jumbo\Desktop\MBR.dat
[2013.01.26 10:05:25 | 000,132,939 | ---- | C] () -- C:\Users\Jumbo\Desktop\OTC_cr.jpg
[2013.01.26 10:04:52 | 000,328,380 | ---- | C] () -- C:\Users\Jumbo\Desktop\OTC.jpg
[2013.01.24 18:46:55 | 001,342,872 | ---- | C] () -- C:\Users\Jumbo\Desktop\IMG_0037.JPG
[2013.01.23 19:26:58 | 000,333,411 | ---- | C] () -- C:\Users\Jumbo\Desktop\setup.jpg
[2013.01.23 19:08:16 | 000,306,493 | ---- | C] () -- C:\Users\Jumbo\Desktop\setup.rar
[2013.01.23 13:38:04 | 000,074,823 | ---- | C] () -- C:\Users\Jumbo\Desktop\Výstřižek.JPG
[2013.01.23 09:02:53 | 000,574,315 | ---- | C] () -- C:\Users\Jumbo\Desktop\adwcleaner.exe
[2013.01.23 08:52:42 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.01.22 15:49:32 | 000,002,975 | ---- | C] () -- C:\Users\Jumbo\Desktop\HiJackThis.lnk
[2013.01.22 15:48:37 | 001,402,880 | ---- | C] () -- C:\Users\Jumbo\Desktop\HiJackThis.msi
[2013.01.08 09:27:23 | 030,840,513 | ---- | C] () -- C:\Users\Jumbo\Desktop\Mačingová,-Antonia---Zhubněte-jednou-provždy.pdf
[2012.03.09 13:06:14 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.02.29 21:40:49 | 000,007,597 | ---- | C] () -- C:\Users\Jumbo\AppData\Local\Resmon.ResmonCfg
[2012.02.15 03:36:36 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.02.15 03:36:36 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2011.12.25 00:52:12 | 000,000,374 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011.12.09 21:15:57 | 000,000,132 | ---- | C] () -- C:\Users\Jumbo\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2011.11.27 14:01:13 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.11.27 14:01:11 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011.08.12 22:17:40 | 000,000,036 | ---- | C] () -- C:\Users\Jumbo\advanced_ip_scanner_MAC.bin
[2011.04.09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.01.05 23:42:04 | 000,000,644 | RHS- | C] () -- C:\Users\Jumbo\ntuser.pol
[2010.11.30 11:11:47 | 000,005,632 | ---- | C] () -- C:\Users\Jumbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.15 22:40:45 | 000,004,096 | -H-- | C] () -- C:\Users\Jumbo\AppData\Local\keyfile3.drm
========== ZeroAccess Check ==========
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012.07.25 19:35:47 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\602Installer
[2012.07.25 19:36:07 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\602XML
[2010.04.19 21:12:24 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Ashampoo
[2010.12.30 17:32:08 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Astro Gemini Software
[2010.05.27 17:03:10 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BITS
[2010.03.04 19:02:18 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BitSpirit
[2010.10.12 15:21:57 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BlackBean
[2011.05.29 17:53:27 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Cocoon Software
[2010.10.09 08:29:33 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\CocoonSoftware
[2010.02.27 19:25:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\DAEMON Tools Lite
[2011.06.24 19:23:34 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Day 1 Studios
[2010.02.24 09:07:28 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\ESET
[2010.06.20 10:57:30 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Facebook
[2010.05.26 16:08:31 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FlashGet
[2013.01.26 10:22:46 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FlashGetBHO
[2011.11.17 08:15:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FreeArc
[2010.02.24 23:57:49 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\GHISLER
[2010.05.27 17:27:50 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\GrabPro
[2010.02.24 00:29:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Leadertech
[2012.06.27 10:11:09 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Mikrotik
[2011.05.10 19:54:27 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Miranda
[2010.05.27 23:18:48 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Orbit
[2012.03.25 12:39:11 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Propellerhead Software
[2011.11.27 14:01:10 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\PunkBuster
[2012.02.28 19:01:02 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Registry Mechanic
[2013.01.12 20:45:42 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Sony
[2011.01.06 18:48:32 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Stellarium
[2012.12.13 16:48:35 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\TeamViewer
[2010.02.23 23:50:21 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Thunderbird
[2013.01.28 00:30:00 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\uTorrent
[2011.11.05 00:21:21 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\xrecode2
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:373E1720
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1
< End of report >
[2017.08.26 07:00:33 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{67DB6F7E-0E28-4A86-9231-794DF08B13E7}
[2017.03.06 22:27:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
[2017.03.06 22:27:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2013.01.28 00:09:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jumbo\Desktop\OTL.exe
[2013.01.26 10:23:11 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.01.23 19:30:34 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.01.23 14:24:22 | 000,000,000 | ---D | C] -- C:\ProgramData\CLSoft LTD
[2013.01.23 14:24:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\continuetosave
[2013.01.23 14:23:51 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013.01.23 09:01:59 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{C5461F59-4385-41A6-9D13-E79C24A90B83}
[2013.01.23 08:52:32 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\Programs
[2013.01.23 08:51:48 | 010,156,344 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jumbo\Desktop\mbam-setup-1.70.0.1100.exe
[2013.01.23 08:50:33 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\Jumbo\Desktop\ATF-Cleaner.exe
[2013.01.22 15:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2013.01.22 15:49:32 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2013.01.22 09:23:21 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\pro vendy
[2013.01.22 09:01:22 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{92AC3B33-5A6F-4816-B3EF-7E135E604B41}
[2013.01.21 21:00:57 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{7DDDFDBF-3F0A-430E-8DE5-1741EBFC7C84}
[2013.01.21 09:00:25 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{B7FDEE9B-79D2-4F3F-8C3E-CFE9DF7832A4}
[2013.01.20 13:51:30 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{9C78075A-15EE-4A7B-AFF6-BEAA475C4845}
[2013.01.19 08:56:45 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{08B961B8-673B-4CE5-815B-71BACD581040}
[2013.01.18 08:56:08 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{7B5DA8C5-2F3D-44EC-8419-0233592E27C3}
[2013.01.17 08:55:31 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{A97EEC6E-E063-44F1-9C62-97976879BCD6}
[2013.01.16 11:58:03 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{DA4395FA-13A4-4461-95FB-58295B061CF4}
[2013.01.15 23:57:38 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{09270E3C-FA1D-4894-A096-698450FB4534}
[2013.01.15 11:57:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{C104B239-3617-4478-A5AA-BF56CC946112}
[2013.01.14 13:10:34 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1BEE0303-8474-4F4D-BDF5-A4B30D56965C}
[2013.01.13 20:49:35 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{00E56DA3-B0D2-46A3-BB38-5502EC251774}
[2013.01.13 08:49:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{3CBA40F6-73B1-4362-BFFA-A2395DEC9AC1}
[2013.01.12 21:27:13 | 015,739,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013.01.12 20:48:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2013.01.12 20:45:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony Media Go Install
[2013.01.12 20:45:42 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Roaming\Sony
[2013.01.12 11:47:21 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{6E36B35D-28B5-45DB-B6BA-FA1E38FD95F0}
[2013.01.11 11:46:44 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{77CC1B05-8FD4-4BF8-AD4A-5ACC492F705A}
[2013.01.10 11:46:07 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{9CD129BF-ED2D-4112-B9A2-AE9FBC2DE73C}
[2013.01.09 09:33:52 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1C9F7EFB-2AE8-49BC-8A24-C83D76083620}
[2013.01.09 07:30:46 | 000,750,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013.01.09 07:30:45 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013.01.09 07:30:32 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013.01.09 07:30:07 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013.01.08 09:33:15 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{3EDEA59A-E1DB-4A0F-B999-52C6BA4792BE}
[2013.01.07 10:03:12 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\bazárek
[2013.01.07 09:32:37 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{F2147072-B7B1-4382-B271-6F72C82789A4}
[2013.01.06 09:32:01 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{D6D6B60D-C7CF-44FC-A8D0-2223E406ADF0}
[2013.01.05 21:51:13 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\Nová složka (4)
[2013.01.05 21:31:36 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{0494A0B8-5552-43A1-BA8B-E214FBE8B260}
[2013.01.04 09:08:33 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{D6C218A4-6945-431B-9445-E31E3A236DB4}
[2013.01.03 09:53:28 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{1AA29D41-D772-4D19-A242-3484BEE6D195}
[2013.01.02 09:52:40 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{58E9D417-AD94-4C3E-8F53-A98EC4CF04E8}
[2013.01.01 19:07:11 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\silvestr
[2012.12.31 09:51:39 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{673AC914-7173-417B-A41F-B08F9885F0A8}
[2012.12.30 15:39:55 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{75378B60-0744-4372-9FAA-1080CA6440DF}
[2012.12.30 10:28:54 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\Desktop\frymburk
[2012.12.30 03:39:28 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{B9F912E0-B2CE-414A-A7B7-E6790CF7F156}
[2012.12.29 09:21:39 | 000,000,000 | ---D | C] -- C:\Users\Jumbo\AppData\Local\{15BFAA9B-B4C8-4239-AC6F-9C407CED56AB}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.01.28 00:09:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jumbo\Desktop\OTL.exe
[2013.01.27 23:27:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.01.27 17:04:43 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.01.27 17:04:43 | 000,014,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.27 16:57:37 | 000,000,434 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2013.01.27 16:57:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.01.27 16:56:55 | 3220,529,152 | -HS- | M] () -- C:\hiberfil.sys
[2013.01.27 10:32:06 | 000,148,264 | ---- | M] () -- C:\Users\Jumbo\Desktop\smetanova-porkova-polevka-10139.jpg
[2013.01.26 22:28:12 | 005,797,884 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.01.26 22:28:12 | 002,385,202 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.01.26 22:28:12 | 001,865,808 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.01.26 22:28:12 | 001,801,132 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.01.26 22:28:12 | 000,004,568 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.01.26 18:09:30 | 000,000,512 | ---- | M] () -- C:\Users\Jumbo\Desktop\MBR.dat
[2013.01.26 10:24:55 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013.01.26 10:04:56 | 000,132,939 | ---- | M] () -- C:\Users\Jumbo\Desktop\OTC_cr.jpg
[2013.01.26 10:04:52 | 000,328,380 | ---- | M] () -- C:\Users\Jumbo\Desktop\OTC.jpg
[2013.01.24 18:47:45 | 001,342,872 | ---- | M] () -- C:\Users\Jumbo\Desktop\IMG_0037.JPG
[2013.01.23 19:26:59 | 000,333,411 | ---- | M] () -- C:\Users\Jumbo\Desktop\setup.jpg
[2013.01.23 19:08:16 | 000,306,493 | ---- | M] () -- C:\Users\Jumbo\Desktop\setup.rar
[2013.01.23 13:38:04 | 000,074,823 | ---- | M] () -- C:\Users\Jumbo\Desktop\Výstřižek.JPG
[2013.01.23 09:02:58 | 000,574,315 | ---- | M] () -- C:\Users\Jumbo\Desktop\adwcleaner.exe
[2013.01.23 08:52:42 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.01.23 08:52:12 | 010,156,344 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jumbo\Desktop\mbam-setup-1.70.0.1100.exe
[2013.01.23 08:50:35 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\Jumbo\Desktop\ATF-Cleaner.exe
[2013.01.22 15:49:32 | 000,002,975 | ---- | M] () -- C:\Users\Jumbo\Desktop\HiJackThis.lnk
[2013.01.22 15:48:40 | 001,402,880 | ---- | M] () -- C:\Users\Jumbo\Desktop\HiJackThis.msi
[2013.01.12 21:27:27 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013.01.12 21:27:27 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.01.12 21:27:13 | 015,739,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013.01.10 09:57:28 | 004,930,888 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.01.08 09:34:59 | 030,840,513 | ---- | M] () -- C:\Users\Jumbo\Desktop\Mačingová,-Antonia---Zhubněte-jednou-provždy.pdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.01.27 10:31:06 | 000,148,264 | ---- | C] () -- C:\Users\Jumbo\Desktop\smetanova-porkova-polevka-10139.jpg
[2013.01.26 18:09:30 | 000,000,512 | ---- | C] () -- C:\Users\Jumbo\Desktop\MBR.dat
[2013.01.26 10:05:25 | 000,132,939 | ---- | C] () -- C:\Users\Jumbo\Desktop\OTC_cr.jpg
[2013.01.26 10:04:52 | 000,328,380 | ---- | C] () -- C:\Users\Jumbo\Desktop\OTC.jpg
[2013.01.24 18:46:55 | 001,342,872 | ---- | C] () -- C:\Users\Jumbo\Desktop\IMG_0037.JPG
[2013.01.23 19:26:58 | 000,333,411 | ---- | C] () -- C:\Users\Jumbo\Desktop\setup.jpg
[2013.01.23 19:08:16 | 000,306,493 | ---- | C] () -- C:\Users\Jumbo\Desktop\setup.rar
[2013.01.23 13:38:04 | 000,074,823 | ---- | C] () -- C:\Users\Jumbo\Desktop\Výstřižek.JPG
[2013.01.23 09:02:53 | 000,574,315 | ---- | C] () -- C:\Users\Jumbo\Desktop\adwcleaner.exe
[2013.01.23 08:52:42 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.01.22 15:49:32 | 000,002,975 | ---- | C] () -- C:\Users\Jumbo\Desktop\HiJackThis.lnk
[2013.01.22 15:48:37 | 001,402,880 | ---- | C] () -- C:\Users\Jumbo\Desktop\HiJackThis.msi
[2013.01.08 09:27:23 | 030,840,513 | ---- | C] () -- C:\Users\Jumbo\Desktop\Mačingová,-Antonia---Zhubněte-jednou-provždy.pdf
[2012.03.09 13:06:14 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.02.29 21:40:49 | 000,007,597 | ---- | C] () -- C:\Users\Jumbo\AppData\Local\Resmon.ResmonCfg
[2012.02.15 03:36:36 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.02.15 03:36:36 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2011.12.25 00:52:12 | 000,000,374 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011.12.09 21:15:57 | 000,000,132 | ---- | C] () -- C:\Users\Jumbo\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2011.11.27 14:01:13 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.11.27 14:01:11 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011.08.12 22:17:40 | 000,000,036 | ---- | C] () -- C:\Users\Jumbo\advanced_ip_scanner_MAC.bin
[2011.04.09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.01.05 23:42:04 | 000,000,644 | RHS- | C] () -- C:\Users\Jumbo\ntuser.pol
[2010.11.30 11:11:47 | 000,005,632 | ---- | C] () -- C:\Users\Jumbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.15 22:40:45 | 000,004,096 | -H-- | C] () -- C:\Users\Jumbo\AppData\Local\keyfile3.drm
========== ZeroAccess Check ==========
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012.07.25 19:35:47 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\602Installer
[2012.07.25 19:36:07 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\602XML
[2010.04.19 21:12:24 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Ashampoo
[2010.12.30 17:32:08 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Astro Gemini Software
[2010.05.27 17:03:10 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BITS
[2010.03.04 19:02:18 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BitSpirit
[2010.10.12 15:21:57 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\BlackBean
[2011.05.29 17:53:27 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Cocoon Software
[2010.10.09 08:29:33 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\CocoonSoftware
[2010.02.27 19:25:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\DAEMON Tools Lite
[2011.06.24 19:23:34 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Day 1 Studios
[2010.02.24 09:07:28 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\ESET
[2010.06.20 10:57:30 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Facebook
[2010.05.26 16:08:31 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FlashGet
[2013.01.26 10:22:46 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FlashGetBHO
[2011.11.17 08:15:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\FreeArc
[2010.02.24 23:57:49 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\GHISLER
[2010.05.27 17:27:50 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\GrabPro
[2010.02.24 00:29:25 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Leadertech
[2012.06.27 10:11:09 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Mikrotik
[2011.05.10 19:54:27 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Miranda
[2010.05.27 23:18:48 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Orbit
[2012.03.25 12:39:11 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Propellerhead Software
[2011.11.27 14:01:10 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\PunkBuster
[2012.02.28 19:01:02 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Registry Mechanic
[2013.01.12 20:45:42 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Sony
[2011.01.06 18:48:32 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Stellarium
[2012.12.13 16:48:35 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\TeamViewer
[2010.02.23 23:50:21 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\Thunderbird
[2013.01.28 00:30:00 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\uTorrent
[2011.11.05 00:21:21 | 000,000,000 | ---D | M] -- C:\Users\Jumbo\AppData\Roaming\xrecode2
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:373E1720
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1
< End of report >
Re: Prosím o kontrolu logu
OTL Extras logfile created on: 28.1.2013 0:23:26 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jumbo\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 56,03% Memory free
8,00 Gb Paging File | 5,90 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Computer Name: JUMBO-PC | User Name: Jumbo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- F:\Program Files\Adobe Photoshop\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- F:\Program Files\Adobe Photoshop\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"H:\MirandaPortable\App\Miranda\miranda32.exe" = H:\MirandaPortable\App\Miranda\miranda32.exe:*:Enabled:Miranda
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet Network\FlashGet 3\FlashGet3.exe" = D:\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"H:\MirandaPortable\App\Miranda\miranda32.exe" = H:\MirandaPortable\App\Miranda\miranda32.exe:*:Enabled:Miranda
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet Network\FlashGet 3\FlashGet3.exe" = D:\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04EEBC70-063C-49B8-B532-E5C74C7DF48B}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{1D55EB0F-2618-49C6-98ED-462401A62968}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{21CBE132-860A-4E8D-9A5F-2FA470F504DC}" = lport=2869 | protocol=6 | dir=in | app=system |
"{256AE21E-6BF4-402B-9ADE-948FCBD0807D}" = rport=138 | protocol=17 | dir=out | app=system |
"{269DC538-8636-4212-93E6-D9F9B7620879}" = lport=2869 | protocol=6 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{276C51E7-459F-48A0-BEAE-1B1FF510945A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{288FFFE8-A3F1-40A3-9946-EE59F4CFA2E0}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2BA92D35-4E70-4F49-A6E1-E37197EB2E3B}" = lport=138 | protocol=17 | dir=in | app=system |
"{3762CD6E-1D98-4AC7-B801-6449A4FE4C34}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{38822D76-8BEF-406C-BD02-CB562DADF393}" = rport=445 | protocol=6 | dir=out | app=system |
"{3C65F4C1-DA04-40D1-970A-61E85CD1D491}" = lport=10243 | protocol=6 | dir=in | app=system |
"{4079BDC4-7DF5-4A0B-BC82-059986E98223}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{4597804C-2421-49B4-8CFF-A004D3C7D91D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{4C103983-EC6F-4508-A5BE-AAE529800C27}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{4CB0457E-899D-4113-8FA8-616D93F78DFD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{645076F0-0989-4EB6-BAD0-772E54197675}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{665F68B2-C03D-4054-8A98-9408A550A778}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6E327C00-7531-4F81-833F-2444B0CF731C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{75983711-23E5-4CBC-B918-0146E010F509}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7B93EF50-03CC-430E-A16C-2670DE9993D9}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7C89A578-962F-4B56-BFBE-CB37FC0DDA69}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{92DBA1F1-C0D9-4E01-9592-0E2F71E28A2C}" = lport=137 | protocol=17 | dir=in | app=system |
"{94A2F6EA-204B-439E-97A2-895B7C774912}" = lport=139 | protocol=6 | dir=in | app=system |
"{95330D29-2F71-4A4E-B5C9-0F18CD5ADE5E}" = rport=2869 | protocol=6 | dir=out | app=system |
"{A036820B-24E6-4C13-BBA9-D83DB04B0488}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A08BE9D5-BA25-4BA2-AF03-1164ED2FA44B}" = lport=445 | protocol=6 | dir=in | app=system |
"{A11D2B8A-8AE1-4164-8EA5-663DEA433846}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A16B4A3E-7AE9-40BA-A55D-07542FC40D24}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{CD3F03A5-BC43-4DF2-98E9-7668B1CDEFFE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D02F8995-6093-454F-BA22-C33C6CF59DEB}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{E2179843-0CDC-4837-9038-E68083819FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E5357EE7-E9FA-4615-BCFB-207E82F84851}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB3A3ECF-A0B7-40F9-92D9-EE5482E17499}" = rport=137 | protocol=17 | dir=out | app=system |
"{F07FAA4F-1B2B-49F4-A4CD-91DF3A5CD9C6}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F0A685B8-C250-4C87-9D98-1DD766F31905}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F36CD282-2907-4DA1-99C6-3C1CA5D10A85}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{F551D2FD-3D33-4132-B814-D84F281BA8CF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F848E2AF-FDE7-4825-AF31-18E6BE230A48}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{F891E591-F590-4EF1-B1A5-C22914BE69D1}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{F9FEDAB3-E671-4421-9A70-64B857E765FE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{FD428948-9C93-4A69-AFD1-DCF188D6A542}" = rport=139 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{009AD4FA-C4E8-4345-AEE5-81A3CF220DC4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{00A8ABF9-F0AD-4BC3-AD1B-9F31C4A8420B}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{016E6102-8A13-47CD-9E69-A22B34347D34}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{034EA171-DD2F-4085-982F-4D8A26A7ABD0}" = protocol=17 | dir=in | app=d:\games\battlefield 3™\bf3.exe |
"{04151917-F667-4A00-B043-258221A523E0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0419718C-9CF8-4317-B7AD-588E0CA57815}" = protocol=17 | dir=in | app=c:\program files (x86)\google\google talk\googletalk.exe |
"{041E1926-B90C-4412-BD39-01FC35DED949}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0425CBCE-0984-49E7-A3BA-E050F0F41E2D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{04A20FE6-C192-494F-A9FC-D8A6F952C4E8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0534A682-7BC2-4063-B562-C9F78A26EA34}" = protocol=6 | dir=in | app=c:\program files (x86)\google\google talk\googletalk.exe |
"{05A114A7-6A14-4FE0-B7AE-1443E4154EC1}" = protocol=17 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{0681B8A3-9F36-4B37-92E4-C71CC4DE9087}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{07903DF9-5E3A-41FF-B517-B86959040883}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0A9E807E-1546-42F6-9699-D37AE0E679C1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0BC3A0ED-86E8-4679-8746-AE74A9A3007F}" = protocol=6 | dir=out | app=%systemroot%\system32\msra.exe |
"{0C8DA089-E52F-4209-AF77-2AFE808633C5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0CCFFA95-4766-430A-8D65-616F53E54CE8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0CDB2DBC-967B-438F-B597-CB478A289630}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0D7978B5-62D8-44A2-8CDA-CE8E09AAA01D}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{0E3E711C-947E-48B2-ABDD-0967539FD733}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{0F2996F2-D053-4E5D-BE03-58224B25B5C2}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{0FD5D02D-0286-4B9E-BECD-65A2DD14299A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{115E7777-FE9A-4D3F-BBA3-3FD3FA329AF7}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer.exe |
"{119A5F1A-9594-4A31-9116-71DF789B7E5C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{11FFB09A-C2FE-4385-98BE-9CE3600F2A32}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1207C378-703B-4A76-8354-80DC981AB222}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{121C3F5B-9F1C-4D0B-9123-E4ED8E012309}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{131782A6-EFB1-4F51-8ACB-EAF94474DB96}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{13745C83-822B-483C-94A2-6EB09CB07DB6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{145C2F4B-573C-4367-B5CE-0FC3D702E350}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{14A29AED-81EA-453F-8435-3C3E9499A70E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1584BF57-BD36-4FCC-BA76-2BE37F7F318E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{15E59B92-0EDE-4CEF-AC42-A76C43EF7A96}" = protocol=6 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{16F48BD0-5FB0-4B84-9A30-66A4243C1604}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{176F074C-EB36-443D-8B21-2E51EE5ACABA}" = protocol=6 | dir=in | app=%systemroot%\system32\msra.exe |
"{17944C5A-0F4C-41E1-B15E-A89DD336C938}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{18EE50D3-6CCC-4394-939A-CEB033CC61C8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{19ACB88E-3218-47CC-923A-59F4BD649A77}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{19CDFF35-49C6-48B6-AEED-73B0DCD6599C}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{1B962B87-B661-4F50-898A-08B151C89B54}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1BF8F86A-97A4-40B4-B65A-700F761FABD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1E1F938F-A724-4457-8590-A90DB17389ED}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1EC0C07C-48BC-4988-8906-E298D4A3D126}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1F8827CA-BBD8-4C01-BAC7-77CCB1554358}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{20DABCF5-E843-4CC6-9F14-EF0003EE6BDC}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{21C08C9E-75D1-492A-AA56-315A56F07A89}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{21F76FD6-96B7-42FB-8EAF-F7F82E15331A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2418B5B9-A83C-4A76-AB1B-CB7B60352611}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{24508355-A794-498D-8D4B-F939138B3DFB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{24796803-3828-41A6-A38A-800BEF827F92}" = protocol=17 | dir=in | app=i:\games\rockstar games\rockstar games social club\rgsclauncher.exe |
"{24CE6E8E-CE7E-43A8-9661-E2E202933314}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{251B19FE-01CB-42AE-97ED-33FFB03F7572}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{25DE8B9B-20FE-472F-9581-01DA61E3D862}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2614D2A1-E710-45F0-A54D-10F520720729}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{263ED91E-F4D7-40A2-B8DF-9C058C46F136}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2655C90F-AEAA-45E8-A050-1F9D751268C9}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{26D8CCAC-6D10-4D5C-9854-2BA3B0656BC4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{270494B2-0F42-48E8-961C-A643E0BFFF69}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{28196459-B86D-43B3-857C-05BBEE630DD3}" = dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{284C2422-B86E-4377-8A15-5D309E4193F1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{28760F63-2A2F-40C0-A13F-39CB89DD8FAE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{29567845-A685-4EBB-9C4D-2FAE6B54BCBE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{296370C5-A8A4-481D-AD86-458DC304534F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{29662A19-722B-4397-A5DF-94CD9D641D80}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{29EAD2CD-4CA9-449B-BFF4-A32CCB4C14D5}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{2A83DA3D-76A3-41EA-A734-4154080801E2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2ADEA0BE-C8C5-47E4-BF21-E18232AE615F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2B090EFB-D39C-40FE-A826-A32AF10C3376}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2B20FC88-51F2-475C-AD7D-09C5D1EB28FF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2BE33B9F-D40F-4334-80D0-D2545D6A2C99}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2C5B2D8E-64E2-4E96-996B-B54D4C46FDF5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2C96F3CB-6FFD-4F10-B9C7-5FFDC76AFBD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2CD58248-912C-4A46-AC3E-13EE82CA408E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2F238B01-1408-4AE8-9105-8359FD9A10FA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2FB7F108-9379-4761-8557-67222147B4F9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{30144AD0-6003-4952-B20C-CD68FBFC41C2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{304A222D-A490-4DB6-A8F1-F62D2C25F252}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{317CE8D3-B2FB-40ED-9080-C25CBB979557}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{31F3D877-D81B-4B65-96CC-E5E23D9B451D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{32CA533F-435F-47CA-8FDC-F0071654747F}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{34003BE6-98D5-4632-A90C-93148AD5C6BA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{35EE29EC-0084-42C1-8395-9361B6A6976C}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{378C3E86-47A1-4491-9D82-62840CF71DDF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{37DAB6E4-EAFB-4BAD-86FF-F30B99142985}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{37E5A973-5373-4006-875E-B00DF5D92A4D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{386E1EFD-1AFF-4EDD-87E0-C8646C97A2D0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3950F15B-45E6-4FD1-A322-671D4DA7985F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{395E4462-C044-4437-A362-3844B13B19A3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{39CC6474-7627-4D0E-BBE9-50DC4027B273}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3AF6D3EE-F68E-4021-95F2-98625856D65F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3E9C02EE-A644-40F8-BC30-DD752AE1AEB4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F42999B-3E61-4C19-8AEE-98FD6111B7F2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F8316C8-EF9E-4381-BF16-917FCDF59356}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F9D8318-8010-4F75-9162-5F48C319F52F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4031B15A-6480-4972-8575-44BB143CCEB5}" = protocol=6 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{40724150-509A-4BDA-A681-A60802C1B52C}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{414AF83E-2A7C-4DD9-978A-38AD8BCE44AC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{414E9700-AD18-41CB-8094-058A6F398894}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer_service.exe |
"{41B8F25E-CA5F-4CE1-8B17-1551C83A29AA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4284F99C-59A0-4669-9D5A-4F7DBDEE9B37}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4335C598-1A0B-408A-A5F8-DAB149C9682F}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{43A681F0-842C-44CC-8110-F93CD2BC2528}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4494C6F8-95AA-4CFD-B500-5780D46F4936}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{450A9886-4129-40B2-A43D-769A951A03DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{45339D2C-7A71-434E-ADBE-20B6A5BD9003}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4556404A-3150-4217-BBF3-43F6D6925874}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{460A9B9C-0A23-4704-80C1-891853AFDF44}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{490EC5DB-12AA-4473-93DA-AD9577CB9CAF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4B12E8A4-648E-4A07-9C7F-A256A869AC53}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4B21C4D4-A2BE-456A-AA71-BBD622E7891C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4C009C3F-DEBE-44C8-9B30-4FF46E9F302C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4C4A1DDC-0271-4DA1-A7C0-C8081E19754B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4CD98C36-098D-44C1-A08A-DED5B1F9A6CA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4D30CED3-7B95-44FB-92F2-E05CB84A2F5C}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer_service.exe |
"{4D64C2E5-8164-41B5-BDBD-C8A12788FCC1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4DD30BB1-207B-4A16-8C6F-90B386280C63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4E761F6C-706A-438F-8EEC-32A85534D486}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4E801190-BD43-4EE4-9312-D44B847ACD0C}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{5053C3AD-216D-42F2-801F-3F50267836B7}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{52AF59D9-528D-41C0-98A8-BBCACD3CA8DA}" = protocol=17 | dir=in | app=d:\games\singularity(tm)\binaries\singularity.exe |
"{5451E900-8EB5-4B68-8C2C-A450CDCCCCF6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{546925A5-2807-4832-B4EF-C1284AD39974}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{55B94D5A-9AAD-42C0-8BE9-3996D6B92C07}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{56663C85-F5C1-47EC-AF6F-2F092191AC46}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{569876D5-40D2-4DDB-81A8-2D2408E56CA6}" = protocol=58 | dir=in | app=system |
"{56B3F567-13C3-430C-A65E-9D53AF0E3CAB}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{57DE3458-E45A-4E8E-A08D-5A8AC36518C8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{57E5C899-EF4C-4D65-8BE6-E9A7DDA65912}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{57EE53A4-D924-4A16-9ACD-FCD42C664578}" = protocol=6 | dir=in | app=i:\games\f1\f1_2010_game.exe |
"{580C083C-11AD-4D19-9823-38B1C8C8FAD5}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{58208166-27D9-40C6-B2EB-45152563B116}" = protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{58528747-7240-45EF-976A-3B1DFED34689}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{58CB09EE-C590-4469-BC53-EC191DB213E1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{59328D91-B827-429A-A42E-3ECF958675D3}" = protocol=6 | dir=in | app=d:\games\battlefield.bad.company.2\bfbc2updater.exe |
"{59480FE6-079C-400E-BD5C-7F2D64530FE2}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{596A3E89-2682-410D-9325-0C21360B3220}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5A55C6FD-0246-4F91-84FF-0EBB943F4096}" = protocol=6 | dir=in | app=d:\games\singularity(tm)\binaries\singularity.exe |
"{5AF447B7-1DCD-4DA9-B29E-678461D70128}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5B0FCA1A-F7FB-4D3D-A21E-2CA0D762C775}" = protocol=6 | dir=in | app=d:\games\battlefield 3™\bf3.exe |
"{5BDB9D47-9E76-400C-9C9D-440E4EED9B06}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5C232C92-5FE7-407D-A854-F376F380AD07}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5C85A4EE-73CD-4250-8A16-247C55459A2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5CD63D0E-4F4E-417C-BAEB-D55CEF8FB765}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5DAEF0D9-9D8B-47B7-9793-73B4BE351E65}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5DFB6B1C-7F54-4A11-8AAE-732E38DB83B4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5E7AE71D-AE92-4BB2-AD79-E73F7FD4A04E}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{5F5F8610-06F6-4A80-AE99-664ACA8EB8FD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{60D37038-619E-4688-815B-B021B6B01025}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{60D55CA5-DE8F-419A-80DC-3F877E1C4FAE}" = protocol=17 | dir=in | app=d:\games\battlefield.bad.company.2\bfbc2updater.exe |
"{61776716-A7D7-4A2A-A2CD-52142DE4B1B7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{624EA703-7E7E-4A49-9DB1-AA4C2D3ADEAB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6256A17F-32E2-4D87-A5B3-78AF02A82128}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{628604DC-CF9D-443F-A2A5-EF3EE6AC09CF}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{63B52EA2-EBA2-4954-B887-65403CF2C59B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6432F241-76B0-4BB4-A25E-53ED2FE99D9D}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{653BDC45-A908-42E2-BCD1-92A6B6B557E3}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{66D7EBBD-AF1E-4D0F-884A-C4D05A409F15}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6750D14A-895A-4FE7-870B-61E044640694}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{67703249-9C7B-4482-A321-E5538513E031}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{68E92A14-6638-4B27-80BC-2008065E44EC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{69F3D7CF-FC12-45DB-B7B2-30C36EBF5944}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6AB23FC5-F466-4482-9BF4-CD2478E2F6D6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6AE825DE-223C-44A5-9211-1DB9A0CA759F}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{6B76F959-1030-4255-88B9-3386C17A7785}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6C463FD5-9186-4DE7-AE67-B9A73F8FFE60}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6E00E538-8CF7-4160-8C05-0FE595F51805}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6E7F9028-2EDD-4BCC-96C2-7A90DFE0EB12}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6EC79566-E471-47D3-AFBC-A72872F5F08D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6F366990-071C-4035-8D5F-F38BABB3DD40}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6F9F2494-1139-4B5E-A31F-FD1ED0DBB493}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{70145081-0EE5-44BB-9600-21152E15746B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{713689F2-8CB0-4674-A2C3-35579680FB53}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7143C902-9B39-45F3-886B-57D246D5DFD3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{727BDC48-3B1D-46EB-8D54-F11B603C8D6B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{72CC755E-53AC-458D-8FAF-8133A64F8956}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{7375C991-0E61-438D-8D11-26983F8A3A15}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{745560CD-F166-4080-B014-EC5EE24C36C3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{75D20ECC-24D5-4341-8175-A86DF00AC356}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{76241E30-54BC-43E7-8FF3-4E5750E44D8D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7643AA38-CD24-411E-BDEF-8A26FCA52618}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7830F5F2-E505-4F0A-BC00-F85127C9DFDA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{78BB9898-F712-49A9-873F-E8C68E5038BE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7A03E193-34AD-404F-95A5-679095699C65}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7A302FD4-8396-425E-B8B1-B93629EDF9C9}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{7B030420-FC9E-4E60-8505-2967BA9A9D13}" = dir=out | app=k:\games\max payne 3\playmaxpayne3.exe |
"{7B849937-EAD9-4B60-A330-662522EDEED9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7C35E42E-4234-48B9-83FD-2BAC3472E0DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7C4CBB46-54D2-435B-81A0-2BA236DBAC05}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7CBC4033-1FFD-41F5-8C17-8A28B1E5A67A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7CED9168-BB65-4FAB-A93E-AC8F88BE75BB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7D6C2AF8-CAC0-4AF6-BED7-11B5C2909186}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{7D9F18B5-1059-4776-9500-192672999404}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7E725A13-7802-4E6E-BAB0-2CB4FDFA4CFE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7E839C8E-C87E-4B07-97AE-975F7AC0D080}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7EA113C6-C434-440B-B7C3-4D0AB19A6981}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7F87C14E-B634-4E24-87C7-3A40C11C8296}" = protocol=17 | dir=in | app=h:\games\need for speed(tm) hot pursuit\launcher.exe |
"{80CC1223-44C1-4F0A-9E6F-46443D84BF3D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{81B35FAD-ABB8-4600-B979-6529D364B209}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{82DA9B3C-D9C8-4828-BAAC-41A6F298FCD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{82FA3E51-7123-45A8-A8CB-41ECFDFE31A7}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{8375D768-D351-40BC-90EE-54BB70754F58}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8440EE98-D737-4851-9632-49550DDE7DF3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{84A508B3-0E12-4F4E-A51B-827F63A37AD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{84B6649B-92B1-47B2-97C2-DDB7245FEFFA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{85095AD0-49CB-438F-885E-FA1D09B7F94D}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{85195DB4-9ED8-407B-95C4-47D14F0B4E52}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8570E74D-6CAB-4018-B0A0-B302AE30C15B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{85F4BF6F-EB2B-4718-82F8-8CB669CFA888}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{860504DA-0799-441C-9FCF-FB5846B788A8}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{861C0E8C-AA88-463B-82C4-8C36ED0791A1}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{86567CA5-AF47-42F0-A434-390EC749C73F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{87705077-EB57-4A6A-BE51-16F986BA40FB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{884157BD-D143-4E47-9312-5A311AC61E42}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{88B186B7-2974-4C0D-8118-2E48E4937EF5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{88D86791-A2E1-482C-90A6-255A2600A57E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{89AD178D-74AF-4214-8387-60AA09232AA3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8B74A30D-338C-415C-8191-CD7026D3DAF5}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{8BBC4BD1-468E-489C-BF51-3E02988EA2B2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8CBF6B3A-B149-46D0-B1FB-F82EDA2AB200}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8D759B74-F2B1-4D3E-8BFB-1BFA7B0A2C08}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8DC62EA3-574A-4A23-BC65-17068AB14E27}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8EC3CBC3-FF68-4D8C-8819-4E7AE71A6464}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{903801CD-E1E0-465B-B52E-F0E67C0427C0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{90D781F3-4D11-4015-8D5D-E8D0DBF20E21}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9139D3F8-53C7-4B45-B415-A0011A0EF59F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{929BC875-3E84-478F-8A7D-C6301C407ECC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{92B39D7A-D819-4B79-98FB-C54AEB108532}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9313C880-D056-4BB2-AFE8-35B624DFEA82}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{93B431BE-2BCC-41CA-AA9A-11116C3B8E63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{940C4EA7-9A7D-44EA-A684-B57E7B438838}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{94868DE1-D686-4E4C-8379-36EDE4D88188}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{95593BFF-7B21-44FB-A8D5-5E929A2956E0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9617191C-F4E3-44FE-BCF9-62D41EF55E1F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{968D4A60-4F1A-4361-9942-1EF4A62C75B1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{969B1B30-2886-49D4-9D6C-C88E7A7C29F3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{96EDB9B5-3E6C-49F3-835D-7B50B428C88C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9A09A6EC-69BA-4170-A532-8AEF1D4FE378}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9BB2BB0D-559A-45B5-8096-796568FEF4F7}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{9C2E0BC3-6131-4BCD-A5ED-EE81EDE8FC52}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9DD720CD-6711-413F-A49C-A1BC77951A5B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9EA8FB02-1E90-42DF-AAC6-2F0E43950424}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9FC4F0C5-1213-4F71-A191-3FACCF0D65AE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A07A6ED0-0F6B-4E8E-BC27-1652BA575A29}" = protocol=6 | dir=in | app=k:\games\assasin creed\acrmp.exe |
"{A132CFB9-0BF2-464C-9ACF-256F94B243D4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A178B1E2-9837-4A3D-B818-20F1B9CAF5F5}" = protocol=17 | dir=in | app=i:\games\f1\f1_2010_game.exe |
"{A1B9584C-5D45-46E5-8EBA-982B77E22AC1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A1F787B9-2845-4159-9D8C-8B204C9623E4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A1FA079E-5578-4523-BDEC-AD9C69A585DA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A323EF1D-E6D9-4421-BA5C-07111D911DFB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A34263CD-43CE-4D64-8486-BDD012B4FDB9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A344FC6F-1C5D-4EB5-BD5D-9B253481152E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A390ED58-BB2B-4C13-8001-6CE309E9C538}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4773426-9E4C-4E41-9DB6-21F42C3065A5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4EC5771-7B87-45D9-B3E5-DFF4D359EFD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4F0172E-7D67-49EF-9DB6-085F3E228EE7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A620C910-1770-46A8-B7A4-2E65771B2527}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A738AF59-E4AB-4766-9DA9-02EED5A867AD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A79CCDF2-407A-411C-8F70-BF8098457B41}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AA1AFEA1-EA9B-42EC-8379-D36F5C13AF84}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AC0EC5E7-A0C2-4255-9BF9-D73EAA453FDB}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{ACF24A67-0676-49B9-A6AD-33642F98D94B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AD40C699-EB48-4DE2-85DA-F7ABDF14BE04}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AE579933-4F49-41E0-B2A5-2C5E5F931F1E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AF71F219-BB0F-4F60-A8E2-94753FD75DA2}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{AF87E144-C4D5-4CCB-916E-62784A740592}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AF9DADF3-ED62-4607-BA5C-9CAA33E3111F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AFF3ACB2-4362-4A8C-8E9C-1D8377191F81}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B06ED6EB-BAE4-4CBC-9AB9-670E6FD188CD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B10D2BDB-C5CC-4860-8BEC-6FDFD509B7AC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B1840BEA-D425-4B48-A8CA-ABED1FA53D2A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jumbo\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 56,03% Memory free
8,00 Gb Paging File | 5,90 Gb Available in Paging File | 73,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Computer Name: JUMBO-PC | User Name: Jumbo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- F:\Program Files\Adobe Photoshop\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- F:\Program Files\Adobe Photoshop\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"H:\MirandaPortable\App\Miranda\miranda32.exe" = H:\MirandaPortable\App\Miranda\miranda32.exe:*:Enabled:Miranda
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet Network\FlashGet 3\FlashGet3.exe" = D:\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"H:\MirandaPortable\App\Miranda\miranda32.exe" = H:\MirandaPortable\App\Miranda\miranda32.exe:*:Enabled:Miranda
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet Network\FlashGet 3\FlashGet3.exe" = D:\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04EEBC70-063C-49B8-B532-E5C74C7DF48B}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{1D55EB0F-2618-49C6-98ED-462401A62968}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{21CBE132-860A-4E8D-9A5F-2FA470F504DC}" = lport=2869 | protocol=6 | dir=in | app=system |
"{256AE21E-6BF4-402B-9ADE-948FCBD0807D}" = rport=138 | protocol=17 | dir=out | app=system |
"{269DC538-8636-4212-93E6-D9F9B7620879}" = lport=2869 | protocol=6 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{276C51E7-459F-48A0-BEAE-1B1FF510945A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{288FFFE8-A3F1-40A3-9946-EE59F4CFA2E0}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2BA92D35-4E70-4F49-A6E1-E37197EB2E3B}" = lport=138 | protocol=17 | dir=in | app=system |
"{3762CD6E-1D98-4AC7-B801-6449A4FE4C34}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{38822D76-8BEF-406C-BD02-CB562DADF393}" = rport=445 | protocol=6 | dir=out | app=system |
"{3C65F4C1-DA04-40D1-970A-61E85CD1D491}" = lport=10243 | protocol=6 | dir=in | app=system |
"{4079BDC4-7DF5-4A0B-BC82-059986E98223}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{4597804C-2421-49B4-8CFF-A004D3C7D91D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{4C103983-EC6F-4508-A5BE-AAE529800C27}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{4CB0457E-899D-4113-8FA8-616D93F78DFD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{645076F0-0989-4EB6-BAD0-772E54197675}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{665F68B2-C03D-4054-8A98-9408A550A778}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6E327C00-7531-4F81-833F-2444B0CF731C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{75983711-23E5-4CBC-B918-0146E010F509}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7B93EF50-03CC-430E-A16C-2670DE9993D9}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7C89A578-962F-4B56-BFBE-CB37FC0DDA69}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{92DBA1F1-C0D9-4E01-9592-0E2F71E28A2C}" = lport=137 | protocol=17 | dir=in | app=system |
"{94A2F6EA-204B-439E-97A2-895B7C774912}" = lport=139 | protocol=6 | dir=in | app=system |
"{95330D29-2F71-4A4E-B5C9-0F18CD5ADE5E}" = rport=2869 | protocol=6 | dir=out | app=system |
"{A036820B-24E6-4C13-BBA9-D83DB04B0488}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A08BE9D5-BA25-4BA2-AF03-1164ED2FA44B}" = lport=445 | protocol=6 | dir=in | app=system |
"{A11D2B8A-8AE1-4164-8EA5-663DEA433846}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A16B4A3E-7AE9-40BA-A55D-07542FC40D24}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{CD3F03A5-BC43-4DF2-98E9-7668B1CDEFFE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D02F8995-6093-454F-BA22-C33C6CF59DEB}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{E2179843-0CDC-4837-9038-E68083819FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E5357EE7-E9FA-4615-BCFB-207E82F84851}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB3A3ECF-A0B7-40F9-92D9-EE5482E17499}" = rport=137 | protocol=17 | dir=out | app=system |
"{F07FAA4F-1B2B-49F4-A4CD-91DF3A5CD9C6}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F0A685B8-C250-4C87-9D98-1DD766F31905}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F36CD282-2907-4DA1-99C6-3C1CA5D10A85}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{F551D2FD-3D33-4132-B814-D84F281BA8CF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F848E2AF-FDE7-4825-AF31-18E6BE230A48}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{F891E591-F590-4EF1-B1A5-C22914BE69D1}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{F9FEDAB3-E671-4421-9A70-64B857E765FE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{FD428948-9C93-4A69-AFD1-DCF188D6A542}" = rport=139 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{009AD4FA-C4E8-4345-AEE5-81A3CF220DC4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{00A8ABF9-F0AD-4BC3-AD1B-9F31C4A8420B}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{016E6102-8A13-47CD-9E69-A22B34347D34}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{034EA171-DD2F-4085-982F-4D8A26A7ABD0}" = protocol=17 | dir=in | app=d:\games\battlefield 3™\bf3.exe |
"{04151917-F667-4A00-B043-258221A523E0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0419718C-9CF8-4317-B7AD-588E0CA57815}" = protocol=17 | dir=in | app=c:\program files (x86)\google\google talk\googletalk.exe |
"{041E1926-B90C-4412-BD39-01FC35DED949}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0425CBCE-0984-49E7-A3BA-E050F0F41E2D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{04A20FE6-C192-494F-A9FC-D8A6F952C4E8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0534A682-7BC2-4063-B562-C9F78A26EA34}" = protocol=6 | dir=in | app=c:\program files (x86)\google\google talk\googletalk.exe |
"{05A114A7-6A14-4FE0-B7AE-1443E4154EC1}" = protocol=17 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{0681B8A3-9F36-4B37-92E4-C71CC4DE9087}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{07903DF9-5E3A-41FF-B517-B86959040883}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0A9E807E-1546-42F6-9699-D37AE0E679C1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0BC3A0ED-86E8-4679-8746-AE74A9A3007F}" = protocol=6 | dir=out | app=%systemroot%\system32\msra.exe |
"{0C8DA089-E52F-4209-AF77-2AFE808633C5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0CCFFA95-4766-430A-8D65-616F53E54CE8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0CDB2DBC-967B-438F-B597-CB478A289630}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0D7978B5-62D8-44A2-8CDA-CE8E09AAA01D}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{0E3E711C-947E-48B2-ABDD-0967539FD733}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{0F2996F2-D053-4E5D-BE03-58224B25B5C2}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{0FD5D02D-0286-4B9E-BECD-65A2DD14299A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{115E7777-FE9A-4D3F-BBA3-3FD3FA329AF7}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer.exe |
"{119A5F1A-9594-4A31-9116-71DF789B7E5C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{11FFB09A-C2FE-4385-98BE-9CE3600F2A32}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1207C378-703B-4A76-8354-80DC981AB222}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{121C3F5B-9F1C-4D0B-9123-E4ED8E012309}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{131782A6-EFB1-4F51-8ACB-EAF94474DB96}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{13745C83-822B-483C-94A2-6EB09CB07DB6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{145C2F4B-573C-4367-B5CE-0FC3D702E350}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{14A29AED-81EA-453F-8435-3C3E9499A70E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1584BF57-BD36-4FCC-BA76-2BE37F7F318E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{15E59B92-0EDE-4CEF-AC42-A76C43EF7A96}" = protocol=6 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{16F48BD0-5FB0-4B84-9A30-66A4243C1604}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{176F074C-EB36-443D-8B21-2E51EE5ACABA}" = protocol=6 | dir=in | app=%systemroot%\system32\msra.exe |
"{17944C5A-0F4C-41E1-B15E-A89DD336C938}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{18EE50D3-6CCC-4394-939A-CEB033CC61C8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{19ACB88E-3218-47CC-923A-59F4BD649A77}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{19CDFF35-49C6-48B6-AEED-73B0DCD6599C}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{1B962B87-B661-4F50-898A-08B151C89B54}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1BF8F86A-97A4-40B4-B65A-700F761FABD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1E1F938F-A724-4457-8590-A90DB17389ED}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1EC0C07C-48BC-4988-8906-E298D4A3D126}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1F8827CA-BBD8-4C01-BAC7-77CCB1554358}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{20DABCF5-E843-4CC6-9F14-EF0003EE6BDC}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{21C08C9E-75D1-492A-AA56-315A56F07A89}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{21F76FD6-96B7-42FB-8EAF-F7F82E15331A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2418B5B9-A83C-4A76-AB1B-CB7B60352611}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{24508355-A794-498D-8D4B-F939138B3DFB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{24796803-3828-41A6-A38A-800BEF827F92}" = protocol=17 | dir=in | app=i:\games\rockstar games\rockstar games social club\rgsclauncher.exe |
"{24CE6E8E-CE7E-43A8-9661-E2E202933314}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{251B19FE-01CB-42AE-97ED-33FFB03F7572}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{25DE8B9B-20FE-472F-9581-01DA61E3D862}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2614D2A1-E710-45F0-A54D-10F520720729}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{263ED91E-F4D7-40A2-B8DF-9C058C46F136}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2655C90F-AEAA-45E8-A050-1F9D751268C9}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{26D8CCAC-6D10-4D5C-9854-2BA3B0656BC4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{270494B2-0F42-48E8-961C-A643E0BFFF69}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{28196459-B86D-43B3-857C-05BBEE630DD3}" = dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{284C2422-B86E-4377-8A15-5D309E4193F1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{28760F63-2A2F-40C0-A13F-39CB89DD8FAE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{29567845-A685-4EBB-9C4D-2FAE6B54BCBE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{296370C5-A8A4-481D-AD86-458DC304534F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{29662A19-722B-4397-A5DF-94CD9D641D80}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{29EAD2CD-4CA9-449B-BFF4-A32CCB4C14D5}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{2A83DA3D-76A3-41EA-A734-4154080801E2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2ADEA0BE-C8C5-47E4-BF21-E18232AE615F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2B090EFB-D39C-40FE-A826-A32AF10C3376}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2B20FC88-51F2-475C-AD7D-09C5D1EB28FF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2BE33B9F-D40F-4334-80D0-D2545D6A2C99}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2C5B2D8E-64E2-4E96-996B-B54D4C46FDF5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2C96F3CB-6FFD-4F10-B9C7-5FFDC76AFBD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2CD58248-912C-4A46-AC3E-13EE82CA408E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2F238B01-1408-4AE8-9105-8359FD9A10FA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{2FB7F108-9379-4761-8557-67222147B4F9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{30144AD0-6003-4952-B20C-CD68FBFC41C2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{304A222D-A490-4DB6-A8F1-F62D2C25F252}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{317CE8D3-B2FB-40ED-9080-C25CBB979557}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{31F3D877-D81B-4B65-96CC-E5E23D9B451D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{32CA533F-435F-47CA-8FDC-F0071654747F}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{34003BE6-98D5-4632-A90C-93148AD5C6BA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{35EE29EC-0084-42C1-8395-9361B6A6976C}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{378C3E86-47A1-4491-9D82-62840CF71DDF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{37DAB6E4-EAFB-4BAD-86FF-F30B99142985}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{37E5A973-5373-4006-875E-B00DF5D92A4D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{386E1EFD-1AFF-4EDD-87E0-C8646C97A2D0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3950F15B-45E6-4FD1-A322-671D4DA7985F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{395E4462-C044-4437-A362-3844B13B19A3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{39CC6474-7627-4D0E-BBE9-50DC4027B273}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3AF6D3EE-F68E-4021-95F2-98625856D65F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3E9C02EE-A644-40F8-BC30-DD752AE1AEB4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F42999B-3E61-4C19-8AEE-98FD6111B7F2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F8316C8-EF9E-4381-BF16-917FCDF59356}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3F9D8318-8010-4F75-9162-5F48C319F52F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4031B15A-6480-4972-8575-44BB143CCEB5}" = protocol=6 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{40724150-509A-4BDA-A681-A60802C1B52C}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{414AF83E-2A7C-4DD9-978A-38AD8BCE44AC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{414E9700-AD18-41CB-8094-058A6F398894}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer_service.exe |
"{41B8F25E-CA5F-4CE1-8B17-1551C83A29AA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4284F99C-59A0-4669-9D5A-4F7DBDEE9B37}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4335C598-1A0B-408A-A5F8-DAB149C9682F}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{43A681F0-842C-44CC-8110-F93CD2BC2528}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4494C6F8-95AA-4CFD-B500-5780D46F4936}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{450A9886-4129-40B2-A43D-769A951A03DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{45339D2C-7A71-434E-ADBE-20B6A5BD9003}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4556404A-3150-4217-BBF3-43F6D6925874}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{460A9B9C-0A23-4704-80C1-891853AFDF44}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{490EC5DB-12AA-4473-93DA-AD9577CB9CAF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4B12E8A4-648E-4A07-9C7F-A256A869AC53}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4B21C4D4-A2BE-456A-AA71-BBD622E7891C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4C009C3F-DEBE-44C8-9B30-4FF46E9F302C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4C4A1DDC-0271-4DA1-A7C0-C8081E19754B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4CD98C36-098D-44C1-A08A-DED5B1F9A6CA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4D30CED3-7B95-44FB-92F2-E05CB84A2F5C}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer_service.exe |
"{4D64C2E5-8164-41B5-BDBD-C8A12788FCC1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4DD30BB1-207B-4A16-8C6F-90B386280C63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4E761F6C-706A-438F-8EEC-32A85534D486}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{4E801190-BD43-4EE4-9312-D44B847ACD0C}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{5053C3AD-216D-42F2-801F-3F50267836B7}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{52AF59D9-528D-41C0-98A8-BBCACD3CA8DA}" = protocol=17 | dir=in | app=d:\games\singularity(tm)\binaries\singularity.exe |
"{5451E900-8EB5-4B68-8C2C-A450CDCCCCF6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{546925A5-2807-4832-B4EF-C1284AD39974}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{55B94D5A-9AAD-42C0-8BE9-3996D6B92C07}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{56663C85-F5C1-47EC-AF6F-2F092191AC46}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{569876D5-40D2-4DDB-81A8-2D2408E56CA6}" = protocol=58 | dir=in | app=system |
"{56B3F567-13C3-430C-A65E-9D53AF0E3CAB}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{57DE3458-E45A-4E8E-A08D-5A8AC36518C8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{57E5C899-EF4C-4D65-8BE6-E9A7DDA65912}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{57EE53A4-D924-4A16-9ACD-FCD42C664578}" = protocol=6 | dir=in | app=i:\games\f1\f1_2010_game.exe |
"{580C083C-11AD-4D19-9823-38B1C8C8FAD5}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{58208166-27D9-40C6-B2EB-45152563B116}" = protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{58528747-7240-45EF-976A-3B1DFED34689}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{58CB09EE-C590-4469-BC53-EC191DB213E1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{59328D91-B827-429A-A42E-3ECF958675D3}" = protocol=6 | dir=in | app=d:\games\battlefield.bad.company.2\bfbc2updater.exe |
"{59480FE6-079C-400E-BD5C-7F2D64530FE2}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{596A3E89-2682-410D-9325-0C21360B3220}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5A55C6FD-0246-4F91-84FF-0EBB943F4096}" = protocol=6 | dir=in | app=d:\games\singularity(tm)\binaries\singularity.exe |
"{5AF447B7-1DCD-4DA9-B29E-678461D70128}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5B0FCA1A-F7FB-4D3D-A21E-2CA0D762C775}" = protocol=6 | dir=in | app=d:\games\battlefield 3™\bf3.exe |
"{5BDB9D47-9E76-400C-9C9D-440E4EED9B06}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5C232C92-5FE7-407D-A854-F376F380AD07}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5C85A4EE-73CD-4250-8A16-247C55459A2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5CD63D0E-4F4E-417C-BAEB-D55CEF8FB765}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5DAEF0D9-9D8B-47B7-9793-73B4BE351E65}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{5DFB6B1C-7F54-4A11-8AAE-732E38DB83B4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5E7AE71D-AE92-4BB2-AD79-E73F7FD4A04E}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{5F5F8610-06F6-4A80-AE99-664ACA8EB8FD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{60D37038-619E-4688-815B-B021B6B01025}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{60D55CA5-DE8F-419A-80DC-3F877E1C4FAE}" = protocol=17 | dir=in | app=d:\games\battlefield.bad.company.2\bfbc2updater.exe |
"{61776716-A7D7-4A2A-A2CD-52142DE4B1B7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{624EA703-7E7E-4A49-9DB1-AA4C2D3ADEAB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6256A17F-32E2-4D87-A5B3-78AF02A82128}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{628604DC-CF9D-443F-A2A5-EF3EE6AC09CF}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{63B52EA2-EBA2-4954-B887-65403CF2C59B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6432F241-76B0-4BB4-A25E-53ED2FE99D9D}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{653BDC45-A908-42E2-BCD1-92A6B6B557E3}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{66D7EBBD-AF1E-4D0F-884A-C4D05A409F15}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6750D14A-895A-4FE7-870B-61E044640694}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{67703249-9C7B-4482-A321-E5538513E031}" = protocol=6 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{68E92A14-6638-4B27-80BC-2008065E44EC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{69F3D7CF-FC12-45DB-B7B2-30C36EBF5944}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6AB23FC5-F466-4482-9BF4-CD2478E2F6D6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6AE825DE-223C-44A5-9211-1DB9A0CA759F}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{6B76F959-1030-4255-88B9-3386C17A7785}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6C463FD5-9186-4DE7-AE67-B9A73F8FFE60}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6E00E538-8CF7-4160-8C05-0FE595F51805}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6E7F9028-2EDD-4BCC-96C2-7A90DFE0EB12}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6EC79566-E471-47D3-AFBC-A72872F5F08D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6F366990-071C-4035-8D5F-F38BABB3DD40}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6F9F2494-1139-4B5E-A31F-FD1ED0DBB493}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{70145081-0EE5-44BB-9600-21152E15746B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{713689F2-8CB0-4674-A2C3-35579680FB53}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7143C902-9B39-45F3-886B-57D246D5DFD3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{727BDC48-3B1D-46EB-8D54-F11B603C8D6B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{72CC755E-53AC-458D-8FAF-8133A64F8956}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{7375C991-0E61-438D-8D11-26983F8A3A15}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{745560CD-F166-4080-B014-EC5EE24C36C3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{75D20ECC-24D5-4341-8175-A86DF00AC356}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{76241E30-54BC-43E7-8FF3-4E5750E44D8D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7643AA38-CD24-411E-BDEF-8A26FCA52618}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7830F5F2-E505-4F0A-BC00-F85127C9DFDA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{78BB9898-F712-49A9-873F-E8C68E5038BE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7A03E193-34AD-404F-95A5-679095699C65}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7A302FD4-8396-425E-B8B1-B93629EDF9C9}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{7B030420-FC9E-4E60-8505-2967BA9A9D13}" = dir=out | app=k:\games\max payne 3\playmaxpayne3.exe |
"{7B849937-EAD9-4B60-A330-662522EDEED9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7C35E42E-4234-48B9-83FD-2BAC3472E0DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7C4CBB46-54D2-435B-81A0-2BA236DBAC05}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7CBC4033-1FFD-41F5-8C17-8A28B1E5A67A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7CED9168-BB65-4FAB-A93E-AC8F88BE75BB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7D6C2AF8-CAC0-4AF6-BED7-11B5C2909186}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{7D9F18B5-1059-4776-9500-192672999404}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7E725A13-7802-4E6E-BAB0-2CB4FDFA4CFE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7E839C8E-C87E-4B07-97AE-975F7AC0D080}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7EA113C6-C434-440B-B7C3-4D0AB19A6981}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7F87C14E-B634-4E24-87C7-3A40C11C8296}" = protocol=17 | dir=in | app=h:\games\need for speed(tm) hot pursuit\launcher.exe |
"{80CC1223-44C1-4F0A-9E6F-46443D84BF3D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{81B35FAD-ABB8-4600-B979-6529D364B209}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{82DA9B3C-D9C8-4828-BAAC-41A6F298FCD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{82FA3E51-7123-45A8-A8CB-41ECFDFE31A7}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{8375D768-D351-40BC-90EE-54BB70754F58}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8440EE98-D737-4851-9632-49550DDE7DF3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{84A508B3-0E12-4F4E-A51B-827F63A37AD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{84B6649B-92B1-47B2-97C2-DDB7245FEFFA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{85095AD0-49CB-438F-885E-FA1D09B7F94D}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{85195DB4-9ED8-407B-95C4-47D14F0B4E52}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{8570E74D-6CAB-4018-B0A0-B302AE30C15B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{85F4BF6F-EB2B-4718-82F8-8CB669CFA888}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{860504DA-0799-441C-9FCF-FB5846B788A8}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{861C0E8C-AA88-463B-82C4-8C36ED0791A1}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{86567CA5-AF47-42F0-A434-390EC749C73F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{87705077-EB57-4A6A-BE51-16F986BA40FB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{884157BD-D143-4E47-9312-5A311AC61E42}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{88B186B7-2974-4C0D-8118-2E48E4937EF5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{88D86791-A2E1-482C-90A6-255A2600A57E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{89AD178D-74AF-4214-8387-60AA09232AA3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8B74A30D-338C-415C-8191-CD7026D3DAF5}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{8BBC4BD1-468E-489C-BF51-3E02988EA2B2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8CBF6B3A-B149-46D0-B1FB-F82EDA2AB200}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8D759B74-F2B1-4D3E-8BFB-1BFA7B0A2C08}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8DC62EA3-574A-4A23-BC65-17068AB14E27}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{8EC3CBC3-FF68-4D8C-8819-4E7AE71A6464}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{903801CD-E1E0-465B-B52E-F0E67C0427C0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{90D781F3-4D11-4015-8D5D-E8D0DBF20E21}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9139D3F8-53C7-4B45-B415-A0011A0EF59F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{929BC875-3E84-478F-8A7D-C6301C407ECC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{92B39D7A-D819-4B79-98FB-C54AEB108532}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9313C880-D056-4BB2-AFE8-35B624DFEA82}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{93B431BE-2BCC-41CA-AA9A-11116C3B8E63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{940C4EA7-9A7D-44EA-A684-B57E7B438838}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{94868DE1-D686-4E4C-8379-36EDE4D88188}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{95593BFF-7B21-44FB-A8D5-5E929A2956E0}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9617191C-F4E3-44FE-BCF9-62D41EF55E1F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{968D4A60-4F1A-4361-9942-1EF4A62C75B1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{969B1B30-2886-49D4-9D6C-C88E7A7C29F3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{96EDB9B5-3E6C-49F3-835D-7B50B428C88C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9A09A6EC-69BA-4170-A532-8AEF1D4FE378}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9BB2BB0D-559A-45B5-8096-796568FEF4F7}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{9C2E0BC3-6131-4BCD-A5ED-EE81EDE8FC52}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9DD720CD-6711-413F-A49C-A1BC77951A5B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9EA8FB02-1E90-42DF-AAC6-2F0E43950424}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9FC4F0C5-1213-4F71-A191-3FACCF0D65AE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A07A6ED0-0F6B-4E8E-BC27-1652BA575A29}" = protocol=6 | dir=in | app=k:\games\assasin creed\acrmp.exe |
"{A132CFB9-0BF2-464C-9ACF-256F94B243D4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A178B1E2-9837-4A3D-B818-20F1B9CAF5F5}" = protocol=17 | dir=in | app=i:\games\f1\f1_2010_game.exe |
"{A1B9584C-5D45-46E5-8EBA-982B77E22AC1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A1F787B9-2845-4159-9D8C-8B204C9623E4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A1FA079E-5578-4523-BDEC-AD9C69A585DA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A323EF1D-E6D9-4421-BA5C-07111D911DFB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A34263CD-43CE-4D64-8486-BDD012B4FDB9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A344FC6F-1C5D-4EB5-BD5D-9B253481152E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A390ED58-BB2B-4C13-8001-6CE309E9C538}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4773426-9E4C-4E41-9DB6-21F42C3065A5}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4EC5771-7B87-45D9-B3E5-DFF4D359EFD8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4F0172E-7D67-49EF-9DB6-085F3E228EE7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A620C910-1770-46A8-B7A4-2E65771B2527}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A738AF59-E4AB-4766-9DA9-02EED5A867AD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A79CCDF2-407A-411C-8F70-BF8098457B41}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AA1AFEA1-EA9B-42EC-8379-D36F5C13AF84}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AC0EC5E7-A0C2-4255-9BF9-D73EAA453FDB}" = protocol=17 | dir=in | app=h:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{ACF24A67-0676-49B9-A6AD-33642F98D94B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AD40C699-EB48-4DE2-85DA-F7ABDF14BE04}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AE579933-4F49-41E0-B2A5-2C5E5F931F1E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AF71F219-BB0F-4F60-A8E2-94753FD75DA2}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{AF87E144-C4D5-4CCB-916E-62784A740592}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AF9DADF3-ED62-4607-BA5C-9CAA33E3111F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{AFF3ACB2-4362-4A8C-8E9C-1D8377191F81}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B06ED6EB-BAE4-4CBC-9AB9-670E6FD188CD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B10D2BDB-C5CC-4860-8BEC-6FDFD509B7AC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B1840BEA-D425-4B48-A8CA-ABED1FA53D2A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
Re: Prosím o kontrolu logu
"{B294A697-502E-46A5-BBAD-C3025774AA61}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{B2EA12B7-7481-4403-A26E-112467D460F2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B313C286-8AFA-425C-BE20-B3652709264A}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B3F50D1B-FB45-46CF-B5BD-FF852B23F0F3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B425FCDD-816B-42C4-AB53-C72DED3C81FF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B472749F-E36B-4377-9509-A3F6BFB277ED}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B486CF1E-E992-40A2-83EE-F133C6AC34F0}" = protocol=6 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"{B635B0C5-CA70-4929-A9A2-9CA87E3CAF6D}" = protocol=17 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"{B6400D6E-B7BE-4BC5-86DC-AC07D455D593}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B8692D9A-0AF0-445B-A78E-40959AF79CF1}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{BA5B42C8-C4BF-46BD-8E85-2106E54F22D9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BAFE0C78-1D1D-4C22-9A7C-31DF6005B193}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BC1A735D-E492-4408-8595-73FD4074FD49}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BC533F9E-E4E1-4172-A603-A478D65F509B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BF749E1B-836D-4546-9169-1E46BAF1EF71}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C026E12B-B916-47D6-80B8-AE57830E8FCC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C04C53DA-93BC-4331-89DC-542CC0C7CED8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C06CD4B5-E111-4D12-ACCE-DDE0BDA0149F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C0E2D8DB-5616-4BD9-A545-7079BB310C62}" = protocol=6 | dir=in | app=h:\games\need for speed(tm) hot pursuit\launcher.exe |
"{C0E8BD72-922C-479D-9B18-B85D3C6D5FAD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C0EC1BB0-FA78-4B82-BB1C-4AA8804B3C49}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C16515F4-6997-4F71-9016-F0A9EFA4CE0A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C1669089-4752-4501-A051-59342DDC755A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C170018A-5793-4067-A898-EE6190BE4940}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C263FFF3-6459-49AE-88B9-1BDD2C35966E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C2F3FB91-D108-49A6-ACE6-65ECD93877A2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C3229C02-B129-4FE5-81E9-54FC8EA05589}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C46F2016-99B5-43C0-9ACA-7EAB29DE4654}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C474868B-3FCC-4B90-B4AE-9DDF74B77D50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C50C6DFD-03F4-4555-8464-F8DA7CB40D35}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C52E714C-D7F8-45D4-903F-C0E0A582B069}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{C64845D4-FF21-4B00-87F3-E336200B6A76}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C73A9EB4-8F5D-4676-9063-1C2B96FB426C}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer.exe |
"{C779BBB4-0BB5-4A2E-B83E-7572210779D8}" = protocol=17 | dir=in | app=k:\games\assasin creed\acrmp.exe |
"{C7A78676-6756-4088-8F9D-64762FF09C23}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C7F0F16E-CDF0-4999-A915-03774D70BF50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C88F224C-9A04-4E08-BF4C-7B961CF1303F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C8B9DE1D-88D7-41FF-BD31-7790DB330D87}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C8F78F3A-C4DE-431D-86D6-E37CBE39715B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C913E846-502E-4EFC-A26A-6DE5BA09211D}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{C93C5989-5A6A-4F66-B95F-9908B43FE9E2}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{C99D3D37-F0EC-4904-9147-33DB852898E9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C9B4F05E-179B-43A4-A6F7-BA76A0680BC9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C9BD2156-54B4-41FE-866C-4BA60495508F}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{CAE3F379-F84E-4C81-97BE-0998F3CD7217}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CB461011-274C-4FFE-A701-BB436AE18235}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{CB80DBB1-9F57-46F3-85ED-256FA5642898}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CBF8007F-0063-4E01-810E-7669209B3658}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CDC81F7A-BE20-4FE1-BAF6-752771DB1D52}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{CF71D859-8919-496A-AB10-9AEF3A76BBE1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CF7FE8EB-3D1B-47DC-830A-EF193DC4D300}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D035DD0C-DA45-4530-816C-343248D7A67C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D03D70CD-9BD7-44FF-BA84-E36DF224666C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D25D9B3D-B1B5-46C5-A583-C7128B902D32}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D2F2F51E-A9ED-445B-9B48-D50BD2FCBB2B}" = protocol=6 | dir=in | app=i:\games\rockstar games\rockstar games social club\rgsclauncher.exe |
"{D30B65E0-021F-43DB-8231-2B72EB7FAD72}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D311A951-57E6-4782-ACF7-EA75EB43D798}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D34A3AD7-489A-46E5-90BD-F32F10915B39}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D3DDF829-35A5-43B1-99A9-FB142E55D30F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D462FAA7-0669-4D53-823D-D2D91D5C9773}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{D5E43F96-A0CB-46A1-8F98-38AEC46C6E14}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D60BCAD3-0CC9-43A3-91A0-E25FB7AD1F63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D6C43880-A0C5-429B-BD4B-17267B7BCB38}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D703B1D8-351C-4652-BBAE-A819755B7A51}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D7E042B5-B6BE-48A5-99F0-55FC36DF7057}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DA041F00-6696-42D3-8B4D-DF914D0B2C43}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DA850832-7FEC-4443-B7CE-AADEE7CDD41B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DB2FD740-A8B1-4105-8A9A-65C517A527DB}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{DBF7019C-4DFD-4439-8CA9-8CA2F0EAB6A0}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{DC671B14-3717-4159-952E-1B19D0EC5F9D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DD592CDF-37E6-4645-8C1A-780AA5E803FC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DEE2B5F0-A17C-4016-83EB-B14D3F3D7A4A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF1D0913-3510-4FC9-B1B0-F63D3FCCA394}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF2D5006-2387-4ADE-948F-FF4C57D8B993}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF3035EC-EEE4-4BD4-802A-C86686BDB533}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E0B0FFE2-44D8-4BFE-B036-F8D9C473FCD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E10CEF78-A41D-4AE8-A224-B46BC5BB67A6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E1423CD1-D849-4B5B-B8B7-13523B082FD9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E1C55A0D-1447-4952-8089-CABBD1709092}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E239480C-BE8D-4F04-BC39-467867CF2EA7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E64356A0-A0D1-4595-80AC-C07E3DB32605}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E6E8B672-F29B-496E-AEBB-F9E7233154F7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E770E004-5955-417D-A5F3-AFF93EC7A1DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E8BF1F8C-F370-4447-9F61-E707985B15DB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E8CBFC1D-730B-432A-B3FD-32EE5E4F19AF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EA1613F4-16E9-434F-86ED-B1369824BDB1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EB02CCC2-4A4F-4D93-BEB8-F27ED6A6C3AB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EC59B985-C4E7-473E-92A1-0B6DEC1D2F5E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ECB5F330-CA76-4F55-81F1-89628633BF93}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{ECEA5CF5-D619-40B7-8CEB-A4491A76E573}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ED154BE0-C9E3-4E95-A712-F2326EEDE3A7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ED8FEEBB-3BEB-48BD-BF1F-29D39045DA22}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EDE5C9CF-DCFD-4C0D-9E91-2721764F61B8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EE26570E-A41D-4942-A444-550B159C3E50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EF683EB1-62CB-43C5-BBCC-8D88D2183342}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F03F2C6A-710D-40A9-AB99-9957591AB078}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{F10C9E2F-096B-45DF-AB66-3355A4EC0585}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F10D62BD-DF5C-414C-8948-A0D3E6ED7A92}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{F11D9475-8494-43F0-B4FA-3B269CA826E9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F1E30471-3F14-475A-8211-F90BAAE0734B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F288AAF9-3617-450F-828F-950ABC3447B9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F3581405-7C66-4B50-80B0-AE775FEDBC5F}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{F42C1CEA-88AD-4C09-AB8B-38980EAEDC4E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F4AE7A0E-280E-4E6E-9F61-3BDFE218B719}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F56E1010-DF76-4D0C-81FC-986F82D1A674}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F6188AD3-891C-4B46-ADFD-DD59E86960FF}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{F621D78F-BD1B-42D3-AFB4-5AFBFCDA005D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F6602927-2C1C-434F-9EBC-1BA2102EFDAA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F761BE86-AC85-4481-928B-C7F2B768EB21}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F7A753F3-1052-4143-AC5F-7C6B81C0186B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F7ED8C69-084A-43B0-9D43-9604F0292673}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{F7F1465E-10E4-4874-B2BF-12741B105310}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F89F08AE-E524-4F16-85A8-1DF5C4F86CEA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F8BA6B3D-0178-4218-9DAC-C5DE6A419698}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{FAE7C1EE-9222-4486-8548-3E78B0FF6554}" = protocol=6 | dir=out | app=system |
"{FBC89B47-DB5A-4D5C-BB39-AE7C6F692A23}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FBF028C8-E85D-44DD-8AA8-841FFFF96A9D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FD99D8E6-7B5F-4A19-A2CB-DEE20AA824A7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FDA8E31A-99DB-42A7-BB16-FB491D85223F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FE63A025-12B4-495C-B5AC-1AC7D71DF31D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FF4ACE7E-413B-4C40-81E4-3FAB561BE18D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FFED6DBC-BE7D-4446-AE4C-DF113A001DEE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{00AE6EB5-5B25-46E5-8C63-70174CD5957C}J:\games\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=j:\games\counter-strike source\hl2.exe |
"TCP Query User{105F5A3C-CFC1-4E1F-B958-D8CF74259E5E}D:\games\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\games\crysis 2\bin32\crysis2.exe |
"TCP Query User{18831EF0-39BF-4949-864B-FCD14365F185}C:\users\jumbo\desktop\winbox.exe" = protocol=6 | dir=in | app=c:\users\jumbo\desktop\winbox.exe |
"TCP Query User{1A561975-943B-4472-86DE-5411D573E31B}C:\games\tdu2\testdrive2.exe" = protocol=6 | dir=in | app=c:\games\tdu2\testdrive2.exe |
"TCP Query User{1C75C504-7472-47B3-A21A-730AB124A179}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"TCP Query User{270E30B5-4064-43E9-89A3-F5FFC0F83749}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{2E9B355F-4E64-48EB-AD1A-8F2B84B75F7E}H:\games\need for speed(tm) hot pursuit\nfs11.exe" = protocol=6 | dir=in | app=h:\games\need for speed(tm) hot pursuit\nfs11.exe |
"TCP Query User{2FB02897-EB54-4FC3-9368-2B51150AD3AC}C:\games\tdu2\_uplauncher.exe" = protocol=6 | dir=in | app=c:\games\tdu2\_uplauncher.exe |
"TCP Query User{359C1AAC-7EF4-45A8-BEF1-1E12348B0A44}K:\games\saints row the third\saintsrowthethird_dx11.exe" = protocol=6 | dir=in | app=k:\games\saints row the third\saintsrowthethird_dx11.exe |
"TCP Query User{48531B5A-26DE-4A0D-8124-1314B3C75231}J:\games\lfs\lfs.exe" = protocol=6 | dir=in | app=j:\games\lfs\lfs.exe |
"TCP Query User{52BD711A-4DAF-4B26-A0E1-A22C9BB61F65}C:\games\tdu2\uplauncher.exe" = protocol=6 | dir=in | app=c:\games\tdu2\uplauncher.exe |
"TCP Query User{5A7936D1-0DB5-4324-B6D1-CDEAA492644D}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{5C561239-95E1-469F-AD6A-BBCAE3FB4F57}K:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe" = protocol=6 | dir=in | app=k:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe |
"TCP Query User{6F05139A-7067-4C6B-A21F-1D434D6B3471}I:\games\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=i:\games\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{80778B4B-1F3F-4E20-B32D-802CDE197DE1}I:\games\call of duty - black ops\blackops.exe" = protocol=6 | dir=in | app=i:\games\call of duty - black ops\blackops.exe |
"TCP Query User{866AAF14-4BE6-4602-8181-946AC30CF38F}C:\program files (x86)\bitspirit\bitspirit.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"TCP Query User{8F7420A3-02B5-4F96-B965-5B75232FCDDC}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"TCP Query User{9781BC89-4254-4AED-939A-5A3F994A7CB6}J:\games\dirt 3\dirt3_game.exe" = protocol=6 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"TCP Query User{AD1BF7C3-5735-46C6-A6F3-D19837C56F2A}I:\games\call of duty - world at war\codwaw.exe" = protocol=6 | dir=in | app=i:\games\call of duty - world at war\codwaw.exe |
"TCP Query User{B99F5F7C-1F23-43E5-A08B-1659CA755E8E}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"TCP Query User{BC9A2ED2-7D93-40AA-BE88-D971872FD012}D:\games\shift 2 unleashed\shift2u.exe" = protocol=6 | dir=in | app=d:\games\shift 2 unleashed\shift2u.exe |
"TCP Query User{CBB57300-2BED-449E-AAB2-27A46295CDAF}C:\miranda im2\miranda32.exe" = protocol=6 | dir=in | app=c:\miranda im2\miranda32.exe |
"TCP Query User{E7B39D68-EAC4-41F4-9A3F-6003416DCBCC}K:\games\max payne 3\maxpayne3.exe" = protocol=6 | dir=in | app=k:\games\max payne 3\maxpayne3.exe |
"TCP Query User{F04188BE-05D3-427A-9441-1DC5D2168251}C:\miranda im2\miranda32.exe" = protocol=6 | dir=in | app=c:\miranda im2\miranda32.exe |
"TCP Query User{F384E0DC-BCFB-49DC-833B-6B4E10A38B5E}J:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=6 | dir=in | app=j:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe |
"TCP Query User{F742AB4F-93AD-443D-805A-0569A1C1C594}K:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=6 | dir=in | app=k:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"TCP Query User{F750B39C-42FA-4E51-B375-972C12BE023A}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{0D2BA882-6F10-409F-BAFD-9E17151EAD7F}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{14C24771-F690-48E3-AD07-3EEEE2A8E55F}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"UDP Query User{1D834738-48E6-4C62-8B81-D03BB8669855}D:\games\shift 2 unleashed\shift2u.exe" = protocol=17 | dir=in | app=d:\games\shift 2 unleashed\shift2u.exe |
"UDP Query User{1D86BD4A-EAFF-42A3-B8F9-A2D36B9E2ABE}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{2B3B778E-40BD-444C-B5C1-39B64FA8FA14}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{3B2ABF8F-B54E-48B7-B562-EA4ACAAC2364}H:\games\need for speed(tm) hot pursuit\nfs11.exe" = protocol=17 | dir=in | app=h:\games\need for speed(tm) hot pursuit\nfs11.exe |
"UDP Query User{468E894D-49FF-44A2-A4EA-0CF29DD3CE6C}K:\games\saints row the third\saintsrowthethird_dx11.exe" = protocol=17 | dir=in | app=k:\games\saints row the third\saintsrowthethird_dx11.exe |
"UDP Query User{4F27BCD3-35A8-48E1-B5F2-7300EF213A84}C:\miranda im2\miranda32.exe" = protocol=17 | dir=in | app=c:\miranda im2\miranda32.exe |
"UDP Query User{709D5B2A-82D9-43CC-9727-2A025AF3BD96}J:\games\lfs\lfs.exe" = protocol=17 | dir=in | app=j:\games\lfs\lfs.exe |
"UDP Query User{71E298E8-E1B6-4012-9A41-D09E0B5F9B16}I:\games\call of duty - world at war\codwaw.exe" = protocol=17 | dir=in | app=i:\games\call of duty - world at war\codwaw.exe |
"UDP Query User{75A646C4-B8B2-48C6-A657-66971726CFA2}C:\games\tdu2\testdrive2.exe" = protocol=17 | dir=in | app=c:\games\tdu2\testdrive2.exe |
"UDP Query User{8AC44438-A8F7-4349-BE15-042C6655D2FB}I:\games\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=i:\games\rockstar games\grand theft auto iv\gtaiv.exe |
"UDP Query User{8DCB0B86-4B07-4A98-8D1B-DA8B34015C20}C:\miranda im2\miranda32.exe" = protocol=17 | dir=in | app=c:\miranda im2\miranda32.exe |
"UDP Query User{940C6A3B-E0DB-4D90-9DCD-B380E75650BA}K:\games\max payne 3\maxpayne3.exe" = protocol=17 | dir=in | app=k:\games\max payne 3\maxpayne3.exe |
"UDP Query User{95F02586-1A98-4A83-967A-2507E7015EC2}K:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=17 | dir=in | app=k:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"UDP Query User{98ACAFD7-99CA-4E6E-8207-4307F60E5341}C:\games\tdu2\_uplauncher.exe" = protocol=17 | dir=in | app=c:\games\tdu2\_uplauncher.exe |
"UDP Query User{9A0B3508-6C57-49B9-8F8D-9D854D8B44E0}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"UDP Query User{9FEE8F60-2B9D-4232-B485-58703BA68758}C:\games\tdu2\uplauncher.exe" = protocol=17 | dir=in | app=c:\games\tdu2\uplauncher.exe |
"UDP Query User{A2966671-BB0E-40A8-B6B7-4AF80DA9E1BC}J:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=17 | dir=in | app=j:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe |
"UDP Query User{A7BF925E-D7A3-4AA6-BCAD-A9898896B7D2}C:\users\jumbo\desktop\winbox.exe" = protocol=17 | dir=in | app=c:\users\jumbo\desktop\winbox.exe |
"UDP Query User{B5A0EE1C-EBBF-4A00-8B6C-14B9E7E1EA5C}D:\games\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\games\crysis 2\bin32\crysis2.exe |
"UDP Query User{B5D78C02-33F5-4963-9108-D67B8B2479CD}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{B91A4B7E-65B5-4CDA-BCAE-6EC3144FD882}C:\program files (x86)\bitspirit\bitspirit.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"UDP Query User{DB9A95D3-F9FB-4D57-9053-AEF8CAB52849}I:\games\call of duty - black ops\blackops.exe" = protocol=17 | dir=in | app=i:\games\call of duty - black ops\blackops.exe |
"UDP Query User{EE3BEC8F-1FEB-4F8B-90CA-5F2663531385}J:\games\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=j:\games\counter-strike source\hl2.exe |
"UDP Query User{EFBB3469-B58D-4554-9DB1-C5DF30F4FF30}J:\games\dirt 3\dirt3_game.exe" = protocol=17 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"UDP Query User{F1908CE3-075B-4548-A3BC-ABF0669078EE}K:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe" = protocol=17 | dir=in | app=k:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{0EFFD35D-A09D-0200-E0EB-E8BFD51CF1AB}" = OptimizerPro
"{119B2F5A-2A06-DB96-FF28-992EC2A10BDF}" = AMD Accelerated Video Transcoding
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{2E8D6204-D656-8355-1ED3-2988AC52EB0F}" = ccc-utility64
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46DA7FD9-8BC1-7BA8-98D1-27F46647871B}" = AMD Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum zařízení Windows Mobile
"{63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}" = AMD Media Foundation Decoders
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A10E16AC-34A3-4BB9-83A3-408372AE557A}" = ESET NOD32 Antivirus
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D0C56275-9E7F-4BE5-AB37-15124BF808F2}" = Windows Live Family Safety
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{E974638C-9F47-48C4-672C-B9C65F2BAD62}" = AMD Drag and Drop Transcoding
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"CCleaner" = CCleaner
"ContinueToSave" = ContinueToSave
"Defraggler" = Defraggler
"MediaInfo" = MediaInfo 0.7.28
"TNod" = TNod User & Password Finder
"WinRAR archiver" = WinRAR
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}" = Catalyst Control Center - Branding
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0FB5113B-694A-44D7-8496-E0F251170AFB}" = UltraEdit 16.20
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{19D614EB-D62A-AEE7-2391-E74126601D59}" = CCC Help Italian
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1C373820-B9C8-0F7F-8F84-FC1B76A85F27}" = CCC Help Portuguese
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1E445925-273D-4186-88A0-B8D1B6B119E2}" = WRC FIA World Rally Championship
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{2D35BC33-7D08-D529-DF91-8A15FBF2600E}" = CCC Help Polish
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{337788D1-43D1-9A0F-9787-DD00DB512D41}" = Catalyst Control Center Localization All
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Activision(R)
"{434D0831-3E0C-4D03-A5D4-5E1000008400}" = F1 2010
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{4368D6CF-3528-4D9C-A6FB-709B4B828968}" = Race - The WTCC Game
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4725833D-4325-5C34-57D4-1FE23E5AE578}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4DC37F33-7AEC-A4CB-56B1-69A402828763}" = CCC Help Japanese
"{5710DAC2-8F2A-503C-CFC2-A973ADE0EA4C}" = CCC Help Czech
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5C763682-4C40-86DA-9C46-31924D7D2C34}" = CCC Help Thai
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{60E5022D-FA4B-C6A2-1E80-B46EC39096F3}" = CCC Help Chinese Traditional
"{60F34FDF-267C-408F-290E-EC90D841C8CB}" = CCC Help German
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{66B79AE1-C6E2-B958-689C-D0812DE86BAB}" = CCC Help Greek
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B39BE0F-0F5E-A8FA-33E4-8481AE39D96C}" = CCC Help Russian
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{78DDE3AC-B0EF-40D3-ADCA-7C002F9E11D1}_is1" = Guitar Hero - World Tour v1.0
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E19F2AF-7145-51DE-E395-7729A9374973}" = Catalyst Control Center Graphics Previews Common
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91ACD2BE-8460-45A3-8B3D-AE29256C7376}" = Advanced IP Scanner
"{91CB5B8B-4EC8-DBA1-A88D-99FD480567B0}" = CCC Help English
"{924FBAC4-60D2-7981-3C3E-979DF9CBB346}" = CCC Help Finnish
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{98736A65-3C79-49EC-B7E9-A3C77774B0E6}" = Google SketchUp 6
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9BF745FA-1118-44D2-9362-179DA4B27AC6}" = Webcam 2200
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DC939DC-B7A4-D0E2-C582-A442DF1B3EBE}" = CCC Help Spanish
"{A1BD938B-F006-6E6D-70B2-47E1DD56F7DE}" = CCC Help Swedish
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-A95000000001}" = Adobe Reader 9.5.1 - Czech
"{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1" = xrecode II 1.0.0.180
"{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}" = Google SketchUp 6
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B6E3F2A0-DDBB-4F0A-BA7C-09138605DDAC}" = WRC FIA World Rally Championship
"{BABF7852-C2DD-6A8A-9956-101720C715C7}" = CCC Help Turkish
"{BB7C2A56-9706-43B8-5A8C-210AF5816106}" = CCC Help French
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFC2CB60-5654-05A7-4D30-C661800A3A92}" = CCC Help Korean
"{D04CE005-D1D2-80F3-84C8-B3524FCD39C3}" = CCC Help Norwegian
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D544AE4C-4152-225B-A897-6756C8986B14}" = Catalyst Control Center
"{D81E9069-3CCC-4405-3751-71E4AFEACC52}" = CCC Help Hungarian
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E8C37E27-5205-4C8A-BECB-B00533045AAE}" = SHIFT 2 UNLEASHED™
"{E93FF166-DF14-2537-8FB4-96BB5810A96C}" = CCC Help Danish
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.115
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{FA37AF66-D12A-4BC7-B1DE-3D50C05A4EDB}" = Software602 Form Filler
"{FA9827E1-8A8E-C176-4923-0840A67ED4DE}" = CCC Help Dutch
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Ashampoo Burning Studio 8_is1" = Ashampoo Burning Studio 8.03
"Astro Gemini Screensaver Manager_is1" = Astro Gemini Screensaver Manager 2.0
"BitSpirit_is1" = BitSpirit v3.6.0.401 Stable
"Call of Duty: Black Ops_is1" = Call of Duty: Black Ops
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Convert WAV To MP3_is1" = Convert WAV To MP3 1.0
"Counter-Strike: Source" = Counter-Strike: Source
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FastStone Image Viewer" = FastStone Image Viewer 4.2
"FLAC" = FLAC 1.2.1b (remove only)
"Flight over sea_is1" = Flight over sea 2.4
"FreeArc" = FreeArc 0.666
"GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}" = F1 2010
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.0
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"InstallShield_{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Singularity(TM)
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.7.0 (Full)
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"LogMeIn Hamachi" = LogMeIn Hamachi
"Mafia II_is1" = Mafia II
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Machinarium" = Machinarium
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.70.0.1100
"Miranda IM" = Miranda IM 0.8.19
"Mozilla Firefox 15.0 (x86 cs)" = Mozilla Firefox 15.0 (x86 cs)
"Mozilla Thunderbird (3.1.6)" = Mozilla Thunderbird (3.1.6)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"OpenAL" = OpenAL
"Painkiller Hell and Damnation_is1" = Painkiller Hell and Damnation
"Podnikový a domácí právník 8.3_is1" = Podnikový a domácí právník 8.3
"PunkBusterSvc" = PunkBuster Services
"Rag Doll Kung Fu" = Rag Doll Kung Fu
"rajče.net_is1" = rajče verze 57 sestavení 192
"Reason4_is1" = Reason 4.0
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"Rockstar Games Social Club" = Rockstar Games Social Club
"Saints Row The Third_is1" = Saints Row The Third
"Solar System - Earth 3D Screensaver_is1" = Solar System - Earth 3D Screensaver v1.4
"Solar System 3D Screensaver_is1" = Solar System 3D Screensaver 1.4
"Star Wars: The Force Unleashed 2_is1" = Star Wars: The Force Unleashed 2
"Stellarium_is1" = Stellarium 0.10.1
"TeamViewer 8" = TeamViewer 8
"Test Drive Unlimited 2_is1" = Test Drive Unlimited 2
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.5
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"QUICKMEDIACONVERTER" = Quick Media Converter
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 27.1.2013 19:21:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:22:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:23:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:24:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:25:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:26:24 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:27:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:28:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:29:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:30:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
[ Media Center Events ]
Error - 7.1.2012 5:44:50 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:44:23 - Chyba při připojování k Internetu 10:44:23 - Nelze kontaktovat
server..
Error - 22.5.2012 4:29:53 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:29:52 - Chyba při připojování k Internetu 10:29:53 - Nelze kontaktovat
server..
Error - 22.5.2012 4:30:25 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:30:20 - Chyba při připojování k Internetu 10:30:20 - Nelze kontaktovat
server..
Error - 22.5.2012 5:31:05 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 11:31:05 - Chyba při připojování k Internetu 11:31:05 - Nelze kontaktovat
server..
Error - 22.5.2012 5:31:33 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 11:31:32 - Chyba při připojování k Internetu 11:31:32 - Nelze kontaktovat
server..
Error - 22.5.2012 6:32:02 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 12:32:02 - Chyba při připojování k Internetu 12:32:02 - Nelze kontaktovat
server..
Error - 22.5.2012 6:32:30 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 12:32:29 - Chyba při připojování k Internetu 12:32:29 - Nelze kontaktovat
server..
Error - 22.5.2012 7:32:59 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 13:32:59 - Chyba při připojování k Internetu 13:32:59 - Nelze kontaktovat
server..
Error - 22.5.2012 7:33:27 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 13:33:26 - Chyba při připojování k Internetu 13:33:26 - Nelze kontaktovat
server..
Error - 29.5.2012 2:49:31 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 8:49:25 - Chyba při připojování k Internetu 8:49:25 - Nelze kontaktovat
server..
[ System Events ]
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:28:27 | Computer Name = Jumbo-PC | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =
< End of report >
"{B2EA12B7-7481-4403-A26E-112467D460F2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B313C286-8AFA-425C-BE20-B3652709264A}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B3F50D1B-FB45-46CF-B5BD-FF852B23F0F3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B425FCDD-816B-42C4-AB53-C72DED3C81FF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B472749F-E36B-4377-9509-A3F6BFB277ED}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B486CF1E-E992-40A2-83EE-F133C6AC34F0}" = protocol=6 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"{B635B0C5-CA70-4929-A9A2-9CA87E3CAF6D}" = protocol=17 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"{B6400D6E-B7BE-4BC5-86DC-AC07D455D593}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B8692D9A-0AF0-445B-A78E-40959AF79CF1}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{BA5B42C8-C4BF-46BD-8E85-2106E54F22D9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BAFE0C78-1D1D-4C22-9A7C-31DF6005B193}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BC1A735D-E492-4408-8595-73FD4074FD49}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BC533F9E-E4E1-4172-A603-A478D65F509B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{BF749E1B-836D-4546-9169-1E46BAF1EF71}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C026E12B-B916-47D6-80B8-AE57830E8FCC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C04C53DA-93BC-4331-89DC-542CC0C7CED8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C06CD4B5-E111-4D12-ACCE-DDE0BDA0149F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C0E2D8DB-5616-4BD9-A545-7079BB310C62}" = protocol=6 | dir=in | app=h:\games\need for speed(tm) hot pursuit\launcher.exe |
"{C0E8BD72-922C-479D-9B18-B85D3C6D5FAD}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C0EC1BB0-FA78-4B82-BB1C-4AA8804B3C49}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C16515F4-6997-4F71-9016-F0A9EFA4CE0A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C1669089-4752-4501-A051-59342DDC755A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C170018A-5793-4067-A898-EE6190BE4940}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C263FFF3-6459-49AE-88B9-1BDD2C35966E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C2F3FB91-D108-49A6-ACE6-65ECD93877A2}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C3229C02-B129-4FE5-81E9-54FC8EA05589}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C46F2016-99B5-43C0-9ACA-7EAB29DE4654}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C474868B-3FCC-4B90-B4AE-9DDF74B77D50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C50C6DFD-03F4-4555-8464-F8DA7CB40D35}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C52E714C-D7F8-45D4-903F-C0E0A582B069}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{C64845D4-FF21-4B00-87F3-E336200B6A76}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C73A9EB4-8F5D-4676-9063-1C2B96FB426C}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version6\teamviewer.exe |
"{C779BBB4-0BB5-4A2E-B83E-7572210779D8}" = protocol=17 | dir=in | app=k:\games\assasin creed\acrmp.exe |
"{C7A78676-6756-4088-8F9D-64762FF09C23}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C7F0F16E-CDF0-4999-A915-03774D70BF50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C88F224C-9A04-4E08-BF4C-7B961CF1303F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C8B9DE1D-88D7-41FF-BD31-7790DB330D87}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C8F78F3A-C4DE-431D-86D6-E37CBE39715B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C913E846-502E-4EFC-A26A-6DE5BA09211D}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{C93C5989-5A6A-4F66-B95F-9908B43FE9E2}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{C99D3D37-F0EC-4904-9147-33DB852898E9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C9B4F05E-179B-43A4-A6F7-BA76A0680BC9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{C9BD2156-54B4-41FE-866C-4BA60495508F}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{CAE3F379-F84E-4C81-97BE-0998F3CD7217}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CB461011-274C-4FFE-A701-BB436AE18235}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{CB80DBB1-9F57-46F3-85ED-256FA5642898}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CBF8007F-0063-4E01-810E-7669209B3658}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CDC81F7A-BE20-4FE1-BAF6-752771DB1D52}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{CF71D859-8919-496A-AB10-9AEF3A76BBE1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{CF7FE8EB-3D1B-47DC-830A-EF193DC4D300}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D035DD0C-DA45-4530-816C-343248D7A67C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D03D70CD-9BD7-44FF-BA84-E36DF224666C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D25D9B3D-B1B5-46C5-A583-C7128B902D32}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D2F2F51E-A9ED-445B-9B48-D50BD2FCBB2B}" = protocol=6 | dir=in | app=i:\games\rockstar games\rockstar games social club\rgsclauncher.exe |
"{D30B65E0-021F-43DB-8231-2B72EB7FAD72}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D311A951-57E6-4782-ACF7-EA75EB43D798}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D34A3AD7-489A-46E5-90BD-F32F10915B39}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D3DDF829-35A5-43B1-99A9-FB142E55D30F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D462FAA7-0669-4D53-823D-D2D91D5C9773}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{D5E43F96-A0CB-46A1-8F98-38AEC46C6E14}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D60BCAD3-0CC9-43A3-91A0-E25FB7AD1F63}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D6C43880-A0C5-429B-BD4B-17267B7BCB38}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D703B1D8-351C-4652-BBAE-A819755B7A51}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D7E042B5-B6BE-48A5-99F0-55FC36DF7057}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DA041F00-6696-42D3-8B4D-DF914D0B2C43}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DA850832-7FEC-4443-B7CE-AADEE7CDD41B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DB2FD740-A8B1-4105-8A9A-65C517A527DB}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{DBF7019C-4DFD-4439-8CA9-8CA2F0EAB6A0}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{DC671B14-3717-4159-952E-1B19D0EC5F9D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DD592CDF-37E6-4645-8C1A-780AA5E803FC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DEE2B5F0-A17C-4016-83EB-B14D3F3D7A4A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF1D0913-3510-4FC9-B1B0-F63D3FCCA394}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF2D5006-2387-4ADE-948F-FF4C57D8B993}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{DF3035EC-EEE4-4BD4-802A-C86686BDB533}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E0B0FFE2-44D8-4BFE-B036-F8D9C473FCD1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E10CEF78-A41D-4AE8-A224-B46BC5BB67A6}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E1423CD1-D849-4B5B-B8B7-13523B082FD9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E1C55A0D-1447-4952-8089-CABBD1709092}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E239480C-BE8D-4F04-BC39-467867CF2EA7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E64356A0-A0D1-4595-80AC-C07E3DB32605}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E6E8B672-F29B-496E-AEBB-F9E7233154F7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E770E004-5955-417D-A5F3-AFF93EC7A1DF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E8BF1F8C-F370-4447-9F61-E707985B15DB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E8CBFC1D-730B-432A-B3FD-32EE5E4F19AF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EA1613F4-16E9-434F-86ED-B1369824BDB1}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EB02CCC2-4A4F-4D93-BEB8-F27ED6A6C3AB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EC59B985-C4E7-473E-92A1-0B6DEC1D2F5E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ECB5F330-CA76-4F55-81F1-89628633BF93}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{ECEA5CF5-D619-40B7-8CEB-A4491A76E573}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ED154BE0-C9E3-4E95-A712-F2326EEDE3A7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{ED8FEEBB-3BEB-48BD-BF1F-29D39045DA22}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EDE5C9CF-DCFD-4C0D-9E91-2721764F61B8}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EE26570E-A41D-4942-A444-550B159C3E50}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EF683EB1-62CB-43C5-BBCC-8D88D2183342}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F03F2C6A-710D-40A9-AB99-9957591AB078}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{F10C9E2F-096B-45DF-AB66-3355A4EC0585}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F10D62BD-DF5C-414C-8948-A0D3E6ED7A92}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe |
"{F11D9475-8494-43F0-B4FA-3B269CA826E9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F1E30471-3F14-475A-8211-F90BAAE0734B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F288AAF9-3617-450F-828F-950ABC3447B9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F3581405-7C66-4B50-80B0-AE775FEDBC5F}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{F42C1CEA-88AD-4C09-AB8B-38980EAEDC4E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F4AE7A0E-280E-4E6E-9F61-3BDFE218B719}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F56E1010-DF76-4D0C-81FC-986F82D1A674}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F6188AD3-891C-4B46-ADFD-DD59E86960FF}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{F621D78F-BD1B-42D3-AFB4-5AFBFCDA005D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F6602927-2C1C-434F-9EBC-1BA2102EFDAA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F761BE86-AC85-4481-928B-C7F2B768EB21}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F7A753F3-1052-4143-AC5F-7C6B81C0186B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F7ED8C69-084A-43B0-9D43-9604F0292673}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{F7F1465E-10E4-4874-B2BF-12741B105310}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F89F08AE-E524-4F16-85A8-1DF5C4F86CEA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F8BA6B3D-0178-4218-9DAC-C5DE6A419698}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{FAE7C1EE-9222-4486-8548-3E78B0FF6554}" = protocol=6 | dir=out | app=system |
"{FBC89B47-DB5A-4D5C-BB39-AE7C6F692A23}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FBF028C8-E85D-44DD-8AA8-841FFFF96A9D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FD99D8E6-7B5F-4A19-A2CB-DEE20AA824A7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FDA8E31A-99DB-42A7-BB16-FB491D85223F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FE63A025-12B4-495C-B5AC-1AC7D71DF31D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FF4ACE7E-413B-4C40-81E4-3FAB561BE18D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FFED6DBC-BE7D-4446-AE4C-DF113A001DEE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{00AE6EB5-5B25-46E5-8C63-70174CD5957C}J:\games\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=j:\games\counter-strike source\hl2.exe |
"TCP Query User{105F5A3C-CFC1-4E1F-B958-D8CF74259E5E}D:\games\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\games\crysis 2\bin32\crysis2.exe |
"TCP Query User{18831EF0-39BF-4949-864B-FCD14365F185}C:\users\jumbo\desktop\winbox.exe" = protocol=6 | dir=in | app=c:\users\jumbo\desktop\winbox.exe |
"TCP Query User{1A561975-943B-4472-86DE-5411D573E31B}C:\games\tdu2\testdrive2.exe" = protocol=6 | dir=in | app=c:\games\tdu2\testdrive2.exe |
"TCP Query User{1C75C504-7472-47B3-A21A-730AB124A179}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"TCP Query User{270E30B5-4064-43E9-89A3-F5FFC0F83749}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{2E9B355F-4E64-48EB-AD1A-8F2B84B75F7E}H:\games\need for speed(tm) hot pursuit\nfs11.exe" = protocol=6 | dir=in | app=h:\games\need for speed(tm) hot pursuit\nfs11.exe |
"TCP Query User{2FB02897-EB54-4FC3-9368-2B51150AD3AC}C:\games\tdu2\_uplauncher.exe" = protocol=6 | dir=in | app=c:\games\tdu2\_uplauncher.exe |
"TCP Query User{359C1AAC-7EF4-45A8-BEF1-1E12348B0A44}K:\games\saints row the third\saintsrowthethird_dx11.exe" = protocol=6 | dir=in | app=k:\games\saints row the third\saintsrowthethird_dx11.exe |
"TCP Query User{48531B5A-26DE-4A0D-8124-1314B3C75231}J:\games\lfs\lfs.exe" = protocol=6 | dir=in | app=j:\games\lfs\lfs.exe |
"TCP Query User{52BD711A-4DAF-4B26-A0E1-A22C9BB61F65}C:\games\tdu2\uplauncher.exe" = protocol=6 | dir=in | app=c:\games\tdu2\uplauncher.exe |
"TCP Query User{5A7936D1-0DB5-4324-B6D1-CDEAA492644D}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{5C561239-95E1-469F-AD6A-BBCAE3FB4F57}K:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe" = protocol=6 | dir=in | app=k:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe |
"TCP Query User{6F05139A-7067-4C6B-A21F-1D434D6B3471}I:\games\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=i:\games\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{80778B4B-1F3F-4E20-B32D-802CDE197DE1}I:\games\call of duty - black ops\blackops.exe" = protocol=6 | dir=in | app=i:\games\call of duty - black ops\blackops.exe |
"TCP Query User{866AAF14-4BE6-4602-8181-946AC30CF38F}C:\program files (x86)\bitspirit\bitspirit.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"TCP Query User{8F7420A3-02B5-4F96-B965-5B75232FCDDC}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"TCP Query User{9781BC89-4254-4AED-939A-5A3F994A7CB6}J:\games\dirt 3\dirt3_game.exe" = protocol=6 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"TCP Query User{AD1BF7C3-5735-46C6-A6F3-D19837C56F2A}I:\games\call of duty - world at war\codwaw.exe" = protocol=6 | dir=in | app=i:\games\call of duty - world at war\codwaw.exe |
"TCP Query User{B99F5F7C-1F23-43E5-A08B-1659CA755E8E}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"TCP Query User{BC9A2ED2-7D93-40AA-BE88-D971872FD012}D:\games\shift 2 unleashed\shift2u.exe" = protocol=6 | dir=in | app=d:\games\shift 2 unleashed\shift2u.exe |
"TCP Query User{CBB57300-2BED-449E-AAB2-27A46295CDAF}C:\miranda im2\miranda32.exe" = protocol=6 | dir=in | app=c:\miranda im2\miranda32.exe |
"TCP Query User{E7B39D68-EAC4-41F4-9A3F-6003416DCBCC}K:\games\max payne 3\maxpayne3.exe" = protocol=6 | dir=in | app=k:\games\max payne 3\maxpayne3.exe |
"TCP Query User{F04188BE-05D3-427A-9441-1DC5D2168251}C:\miranda im2\miranda32.exe" = protocol=6 | dir=in | app=c:\miranda im2\miranda32.exe |
"TCP Query User{F384E0DC-BCFB-49DC-833B-6B4E10A38B5E}J:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=6 | dir=in | app=j:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe |
"TCP Query User{F742AB4F-93AD-443D-805A-0569A1C1C594}K:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=6 | dir=in | app=k:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"TCP Query User{F750B39C-42FA-4E51-B375-972C12BE023A}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{0D2BA882-6F10-409F-BAFD-9E17151EAD7F}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{14C24771-F690-48E3-AD07-3EEEE2A8E55F}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"UDP Query User{1D834738-48E6-4C62-8B81-D03BB8669855}D:\games\shift 2 unleashed\shift2u.exe" = protocol=17 | dir=in | app=d:\games\shift 2 unleashed\shift2u.exe |
"UDP Query User{1D86BD4A-EAFF-42A3-B8F9-A2D36B9E2ABE}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{2B3B778E-40BD-444C-B5C1-39B64FA8FA14}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{3B2ABF8F-B54E-48B7-B562-EA4ACAAC2364}H:\games\need for speed(tm) hot pursuit\nfs11.exe" = protocol=17 | dir=in | app=h:\games\need for speed(tm) hot pursuit\nfs11.exe |
"UDP Query User{468E894D-49FF-44A2-A4EA-0CF29DD3CE6C}K:\games\saints row the third\saintsrowthethird_dx11.exe" = protocol=17 | dir=in | app=k:\games\saints row the third\saintsrowthethird_dx11.exe |
"UDP Query User{4F27BCD3-35A8-48E1-B5F2-7300EF213A84}C:\miranda im2\miranda32.exe" = protocol=17 | dir=in | app=c:\miranda im2\miranda32.exe |
"UDP Query User{709D5B2A-82D9-43CC-9727-2A025AF3BD96}J:\games\lfs\lfs.exe" = protocol=17 | dir=in | app=j:\games\lfs\lfs.exe |
"UDP Query User{71E298E8-E1B6-4012-9A41-D09E0B5F9B16}I:\games\call of duty - world at war\codwaw.exe" = protocol=17 | dir=in | app=i:\games\call of duty - world at war\codwaw.exe |
"UDP Query User{75A646C4-B8B2-48C6-A657-66971726CFA2}C:\games\tdu2\testdrive2.exe" = protocol=17 | dir=in | app=c:\games\tdu2\testdrive2.exe |
"UDP Query User{8AC44438-A8F7-4349-BE15-042C6655D2FB}I:\games\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=i:\games\rockstar games\grand theft auto iv\gtaiv.exe |
"UDP Query User{8DCB0B86-4B07-4A98-8D1B-DA8B34015C20}C:\miranda im2\miranda32.exe" = protocol=17 | dir=in | app=c:\miranda im2\miranda32.exe |
"UDP Query User{940C6A3B-E0DB-4D90-9DCD-B380E75650BA}K:\games\max payne 3\maxpayne3.exe" = protocol=17 | dir=in | app=k:\games\max payne 3\maxpayne3.exe |
"UDP Query User{95F02586-1A98-4A83-967A-2507E7015EC2}K:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=17 | dir=in | app=k:\games\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"UDP Query User{98ACAFD7-99CA-4E6E-8207-4307F60E5341}C:\games\tdu2\_uplauncher.exe" = protocol=17 | dir=in | app=c:\games\tdu2\_uplauncher.exe |
"UDP Query User{9A0B3508-6C57-49B9-8F8D-9D854D8B44E0}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"UDP Query User{9FEE8F60-2B9D-4232-B485-58703BA68758}C:\games\tdu2\uplauncher.exe" = protocol=17 | dir=in | app=c:\games\tdu2\uplauncher.exe |
"UDP Query User{A2966671-BB0E-40A8-B6B7-4AF80DA9E1BC}J:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=17 | dir=in | app=j:\games\f.e.a.r. 3\f.e.a.r. 3\f.e.a.r. 3.exe |
"UDP Query User{A7BF925E-D7A3-4AA6-BCAD-A9898896B7D2}C:\users\jumbo\desktop\winbox.exe" = protocol=17 | dir=in | app=c:\users\jumbo\desktop\winbox.exe |
"UDP Query User{B5A0EE1C-EBBF-4A00-8B6C-14B9E7E1EA5C}D:\games\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\games\crysis 2\bin32\crysis2.exe |
"UDP Query User{B5D78C02-33F5-4963-9108-D67B8B2479CD}C:\program files (x86)\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\client\googleearth.exe |
"UDP Query User{B91A4B7E-65B5-4CDA-BCAE-6EC3144FD882}C:\program files (x86)\bitspirit\bitspirit.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"UDP Query User{DB9A95D3-F9FB-4D57-9053-AEF8CAB52849}I:\games\call of duty - black ops\blackops.exe" = protocol=17 | dir=in | app=i:\games\call of duty - black ops\blackops.exe |
"UDP Query User{EE3BEC8F-1FEB-4F8B-90CA-5F2663531385}J:\games\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=j:\games\counter-strike source\hl2.exe |
"UDP Query User{EFBB3469-B58D-4554-9DB1-C5DF30F4FF30}J:\games\dirt 3\dirt3_game.exe" = protocol=17 | dir=in | app=j:\games\dirt 3\dirt3_game.exe |
"UDP Query User{F1908CE3-075B-4548-A3BC-ABF0669078EE}K:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe" = protocol=17 | dir=in | app=k:\_image_\xcom enemy unkonwn\xcom\binaries\win32\xcomgame.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{0EFFD35D-A09D-0200-E0EB-E8BFD51CF1AB}" = OptimizerPro
"{119B2F5A-2A06-DB96-FF28-992EC2A10BDF}" = AMD Accelerated Video Transcoding
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{2E8D6204-D656-8355-1ED3-2988AC52EB0F}" = ccc-utility64
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46DA7FD9-8BC1-7BA8-98D1-27F46647871B}" = AMD Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum zařízení Windows Mobile
"{63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}" = AMD Media Foundation Decoders
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A10E16AC-34A3-4BB9-83A3-408372AE557A}" = ESET NOD32 Antivirus
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D0C56275-9E7F-4BE5-AB37-15124BF808F2}" = Windows Live Family Safety
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{E974638C-9F47-48C4-672C-B9C65F2BAD62}" = AMD Drag and Drop Transcoding
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"CCleaner" = CCleaner
"ContinueToSave" = ContinueToSave
"Defraggler" = Defraggler
"MediaInfo" = MediaInfo 0.7.28
"TNod" = TNod User & Password Finder
"WinRAR archiver" = WinRAR
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}" = Catalyst Control Center - Branding
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0FB5113B-694A-44D7-8496-E0F251170AFB}" = UltraEdit 16.20
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{19D614EB-D62A-AEE7-2391-E74126601D59}" = CCC Help Italian
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1C373820-B9C8-0F7F-8F84-FC1B76A85F27}" = CCC Help Portuguese
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1E445925-273D-4186-88A0-B8D1B6B119E2}" = WRC FIA World Rally Championship
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{2D35BC33-7D08-D529-DF91-8A15FBF2600E}" = CCC Help Polish
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{337788D1-43D1-9A0F-9787-DD00DB512D41}" = Catalyst Control Center Localization All
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Activision(R)
"{434D0831-3E0C-4D03-A5D4-5E1000008400}" = F1 2010
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{4368D6CF-3528-4D9C-A6FB-709B4B828968}" = Race - The WTCC Game
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4725833D-4325-5C34-57D4-1FE23E5AE578}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4DC37F33-7AEC-A4CB-56B1-69A402828763}" = CCC Help Japanese
"{5710DAC2-8F2A-503C-CFC2-A973ADE0EA4C}" = CCC Help Czech
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5C763682-4C40-86DA-9C46-31924D7D2C34}" = CCC Help Thai
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{60E5022D-FA4B-C6A2-1E80-B46EC39096F3}" = CCC Help Chinese Traditional
"{60F34FDF-267C-408F-290E-EC90D841C8CB}" = CCC Help German
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{66B79AE1-C6E2-B958-689C-D0812DE86BAB}" = CCC Help Greek
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B39BE0F-0F5E-A8FA-33E4-8481AE39D96C}" = CCC Help Russian
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{78DDE3AC-B0EF-40D3-ADCA-7C002F9E11D1}_is1" = Guitar Hero - World Tour v1.0
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E19F2AF-7145-51DE-E395-7729A9374973}" = Catalyst Control Center Graphics Previews Common
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91ACD2BE-8460-45A3-8B3D-AE29256C7376}" = Advanced IP Scanner
"{91CB5B8B-4EC8-DBA1-A88D-99FD480567B0}" = CCC Help English
"{924FBAC4-60D2-7981-3C3E-979DF9CBB346}" = CCC Help Finnish
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{98736A65-3C79-49EC-B7E9-A3C77774B0E6}" = Google SketchUp 6
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9BF745FA-1118-44D2-9362-179DA4B27AC6}" = Webcam 2200
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DC939DC-B7A4-D0E2-C582-A442DF1B3EBE}" = CCC Help Spanish
"{A1BD938B-F006-6E6D-70B2-47E1DD56F7DE}" = CCC Help Swedish
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-A95000000001}" = Adobe Reader 9.5.1 - Czech
"{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1" = xrecode II 1.0.0.180
"{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}" = Google SketchUp 6
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B6E3F2A0-DDBB-4F0A-BA7C-09138605DDAC}" = WRC FIA World Rally Championship
"{BABF7852-C2DD-6A8A-9956-101720C715C7}" = CCC Help Turkish
"{BB7C2A56-9706-43B8-5A8C-210AF5816106}" = CCC Help French
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFC2CB60-5654-05A7-4D30-C661800A3A92}" = CCC Help Korean
"{D04CE005-D1D2-80F3-84C8-B3524FCD39C3}" = CCC Help Norwegian
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D544AE4C-4152-225B-A897-6756C8986B14}" = Catalyst Control Center
"{D81E9069-3CCC-4405-3751-71E4AFEACC52}" = CCC Help Hungarian
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E8C37E27-5205-4C8A-BECB-B00533045AAE}" = SHIFT 2 UNLEASHED™
"{E93FF166-DF14-2537-8FB4-96BB5810A96C}" = CCC Help Danish
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.115
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{FA37AF66-D12A-4BC7-B1DE-3D50C05A4EDB}" = Software602 Form Filler
"{FA9827E1-8A8E-C176-4923-0840A67ED4DE}" = CCC Help Dutch
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Ashampoo Burning Studio 8_is1" = Ashampoo Burning Studio 8.03
"Astro Gemini Screensaver Manager_is1" = Astro Gemini Screensaver Manager 2.0
"BitSpirit_is1" = BitSpirit v3.6.0.401 Stable
"Call of Duty: Black Ops_is1" = Call of Duty: Black Ops
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Convert WAV To MP3_is1" = Convert WAV To MP3 1.0
"Counter-Strike: Source" = Counter-Strike: Source
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FastStone Image Viewer" = FastStone Image Viewer 4.2
"FLAC" = FLAC 1.2.1b (remove only)
"Flight over sea_is1" = Flight over sea 2.4
"FreeArc" = FreeArc 0.666
"GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400}" = F1 2010
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.0
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"InstallShield_{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Singularity(TM)
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.7.0 (Full)
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"LogMeIn Hamachi" = LogMeIn Hamachi
"Mafia II_is1" = Mafia II
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Machinarium" = Machinarium
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.70.0.1100
"Miranda IM" = Miranda IM 0.8.19
"Mozilla Firefox 15.0 (x86 cs)" = Mozilla Firefox 15.0 (x86 cs)
"Mozilla Thunderbird (3.1.6)" = Mozilla Thunderbird (3.1.6)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"OpenAL" = OpenAL
"Painkiller Hell and Damnation_is1" = Painkiller Hell and Damnation
"Podnikový a domácí právník 8.3_is1" = Podnikový a domácí právník 8.3
"PunkBusterSvc" = PunkBuster Services
"Rag Doll Kung Fu" = Rag Doll Kung Fu
"rajče.net_is1" = rajče verze 57 sestavení 192
"Reason4_is1" = Reason 4.0
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"Rockstar Games Social Club" = Rockstar Games Social Club
"Saints Row The Third_is1" = Saints Row The Third
"Solar System - Earth 3D Screensaver_is1" = Solar System - Earth 3D Screensaver v1.4
"Solar System 3D Screensaver_is1" = Solar System 3D Screensaver 1.4
"Star Wars: The Force Unleashed 2_is1" = Star Wars: The Force Unleashed 2
"Stellarium_is1" = Stellarium 0.10.1
"TeamViewer 8" = TeamViewer 8
"Test Drive Unlimited 2_is1" = Test Drive Unlimited 2
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.5
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"QUICKMEDIACONVERTER" = Quick Media Converter
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 27.1.2013 19:21:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:22:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:23:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:24:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:25:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:26:24 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:27:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:28:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:29:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
Error - 27.1.2013 19:30:23 | Computer Name = Jumbo-PC | Source = GenericUpdater | ID = 0
Description =
[ Media Center Events ]
Error - 7.1.2012 5:44:50 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:44:23 - Chyba při připojování k Internetu 10:44:23 - Nelze kontaktovat
server..
Error - 22.5.2012 4:29:53 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:29:52 - Chyba při připojování k Internetu 10:29:53 - Nelze kontaktovat
server..
Error - 22.5.2012 4:30:25 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 10:30:20 - Chyba při připojování k Internetu 10:30:20 - Nelze kontaktovat
server..
Error - 22.5.2012 5:31:05 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 11:31:05 - Chyba při připojování k Internetu 11:31:05 - Nelze kontaktovat
server..
Error - 22.5.2012 5:31:33 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 11:31:32 - Chyba při připojování k Internetu 11:31:32 - Nelze kontaktovat
server..
Error - 22.5.2012 6:32:02 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 12:32:02 - Chyba při připojování k Internetu 12:32:02 - Nelze kontaktovat
server..
Error - 22.5.2012 6:32:30 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 12:32:29 - Chyba při připojování k Internetu 12:32:29 - Nelze kontaktovat
server..
Error - 22.5.2012 7:32:59 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 13:32:59 - Chyba při připojování k Internetu 13:32:59 - Nelze kontaktovat
server..
Error - 22.5.2012 7:33:27 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 13:33:26 - Chyba při připojování k Internetu 13:33:26 - Nelze kontaktovat
server..
Error - 29.5.2012 2:49:31 | Computer Name = Jumbo-PC | Source = MCUpdate | ID = 0
Description = 8:49:25 - Chyba při připojování k Internetu 8:49:25 - Nelze kontaktovat
server..
[ System Events ]
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:31 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = PNRPSvc | ID = 102
Description =
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7023
Description = Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena
s následující chybou: %%-2140993535
Error - 27.1.2013 12:01:41 | Computer Name = Jumbo-PC | Source = Service Control Manager | ID = 7001
Description = Služba Seskupování v sítích peer-to-peer závisí na službě Protokol
PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující
chyby: %%-2140993535
Error - 27.1.2013 12:28:27 | Computer Name = Jumbo-PC | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =
< End of report >
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Aktualizuj javu:
Java SE Runtime Environment 7
Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Absolutní nedostatek volného místa na discích!!
Na systémovém bys měl mít rezervu alespoň 15% volného místa.Něco odinstaluj , smaž!
Java SE Runtime Environment 7
Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
IE - HKCU\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.soft-quick.info/?l=1&q={searchTerms}
FF - prefs.js..browser.search.defaultenginename: "WebSearch"
FF - prefs.js..browser.search.defaultenginename,S: S", "WebSearch"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.order.1: "WebSearch"
FF - prefs.js..browser.search.order.1,S: S", "WebSearch"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.selectedEngine,S: S", "WebSearch"
FF - prefs.js..extensions.enabledAddons: {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}:3.5
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7
FF - prefs.js..extensions.enabledAddons: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.1
FF - prefs.js..extensions.enabledAddons: {972ce4c6-7e08-4474-a285-3208198ce6fd}:15.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions
[2010.04.10 15:33:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.04.09 19:59:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2013.01.23 18:09:57 | 000,000,553 | ---- | M] () -- C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\WebSearch.xml
[2012.06.15 07:17:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
CHR - default_search_provider: search_url = http://websearch.soft-quick.info/?l=1&q={searchTerms}
CHR - default_search_provider: suggest_url = http://websearch.soft-quick.info/?l=1&q={searchTerms},
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8:64bit: - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: Stahnou vse FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: Stahnout FlashGet3 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: 使用快车3下载 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Jumbo\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O18:64bit: - Protocol\Handler\http\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\http\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\https\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\https\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2013.01.26 22:28:12 | 005,797,884 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.01.26 22:28:12 | 002,385,202 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.01.26 22:28:12 | 001,865,808 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.01.26 22:28:12 | 001,801,132 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:373E1720
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1
:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Users\Jumbo\AppData\Local\{67DB6F7E-0E28-4A86-9231-794DF08B13E7}
C:\Users\Jumbo\AppData\Local\{C5461F59-4385-41A6-9D13-E79C24A90B83}
C:\Users\Jumbo\AppData\Local\{92AC3B33-5A6F-4816-B3EF-7E135E604B41}
C:\Users\Jumbo\AppData\Local\{7DDDFDBF-3F0A-430E-8DE5-1741EBFC7C84}
C:\Users\Jumbo\AppData\Local\{B7FDEE9B-79D2-4F3F-8C3E-CFE9DF7832A4}
C:\Users\Jumbo\AppData\Local\{9C78075A-15EE-4A7B-AFF6-BEAA475C4845}
C:\Users\Jumbo\AppData\Local\{08B961B8-673B-4CE5-815B-71BACD581040}
C:\Users\Jumbo\AppData\Local\{7B5DA8C5-2F3D-44EC-8419-0233592E27C3}
C:\Users\Jumbo\AppData\Local\{A97EEC6E-E063-44F1-9C62-97976879BCD6}
C:\Users\Jumbo\AppData\Local\{DA4395FA-13A4-4461-95FB-58295B061CF4}
C:\Users\Jumbo\AppData\Local\{09270E3C-FA1D-4894-A096-698450FB4534}
C:\Users\Jumbo\AppData\Local\{C104B239-3617-4478-A5AA-BF56CC946112}
C:\Users\Jumbo\AppData\Local\{1BEE0303-8474-4F4D-BDF5-A4B30D56965C}
C:\Users\Jumbo\AppData\Local\{00E56DA3-B0D2-46A3-BB38-5502EC251774}
C:\Users\Jumbo\AppData\Local\{3CBA40F6-73B1-4362-BFFA-A2395DEC9AC1}
C:\Users\Jumbo\AppData\Local\{6E36B35D-28B5-45DB-B6BA-FA1E38FD95F0}
C:\Users\Jumbo\AppData\Local\{77CC1B05-8FD4-4BF8-AD4A-5ACC492F705A}
C:\Users\Jumbo\AppData\Local\{9CD129BF-ED2D-4112-B9A2-AE9FBC2DE73C}
C:\Users\Jumbo\AppData\Local\{1C9F7EFB-2AE8-49BC-8A24-C83D76083620}
C:\Users\Jumbo\AppData\Local\{3EDEA59A-E1DB-4A0F-B999-52C6BA4792BE}
C:\Users\Jumbo\AppData\Local\{F2147072-B7B1-4382-B271-6F72C82789A4}
C:\Users\Jumbo\AppData\Local\{D6D6B60D-C7CF-44FC-A8D0-2223E406ADF0}
C:\Users\Jumbo\AppData\Local\{0494A0B8-5552-43A1-BA8B-E214FBE8B260}
C:\Users\Jumbo\AppData\Local\{D6C218A4-6945-431B-9445-E31E3A236DB4}
C:\Users\Jumbo\AppData\Local\{1AA29D41-D772-4D19-A242-3484BEE6D195}
C:\Users\Jumbo\AppData\Local\{58E9D417-AD94-4C3E-8F53-A98EC4CF04E8}
C:\Users\Jumbo\AppData\Local\{673AC914-7173-417B-A41F-B08F9885F0A8}
C:\Users\Jumbo\AppData\Local\{75378B60-0744-4372-9FAA-1080CA6440DF}
C:\Users\Jumbo\AppData\Local\{B9F912E0-B2CE-414A-A7B7-E6790CF7F156}
C:\Users\Jumbo\AppData\Local\{15BFAA9B-B4C8-4239-AC6F-9C407CED56AB}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
C:\Windows\SysNative\drivers\etc\hosts.ics
C:\Users\Jumbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]
[EMPTYJAVA]
[Reboot]
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Drive C: | 92,17 Gb Total Space | 2,44 Gb Free Space | 2,65% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 1,35 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 48,83 Gb Total Space | 0,60 Gb Free Space | 1,24% Space Free | Partition Type: NTFS
Drive H: | 97,65 Gb Total Space | 2,86 Gb Free Space | 2,93% Space Free | Partition Type: NTFS
Drive I: | 319,27 Gb Total Space | 2,88 Gb Free Space | 0,90% Space Free | Partition Type: NTFS
Drive J: | 931,51 Gb Total Space | 1,20 Gb Free Space | 0,13% Space Free | Partition Type: NTFS
Drive M: | 931,51 Gb Total Space | 14,46 Gb Free Space | 1,55% Space Free | Partition Type: NTFS
Absolutní nedostatek volného místa na discích!!
Na systémovém bys měl mít rezervu alespoň 15% volného místa.Něco odinstaluj , smaž!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
Prefs.js: "WebSearch" removed from browser.search.defaultenginename
Prefs.js: S", "WebSearch" removed from browser.search.defaultenginename,S
Prefs.js: "" removed from browser.search.defaultthis.engineName
Prefs.js: "WebSearch" removed from browser.search.order.1
Prefs.js: S", "WebSearch" removed from browser.search.order.1,S
Prefs.js: "Google" removed from browser.search.selectedEngine
Prefs.js: S", "WebSearch" removed from browser.search.selectedEngine,S
Prefs.js: {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}:3.5 removed from extensions.enabledAddons
Prefs.js: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7 removed from extensions.enabledAddons
Prefs.js: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.1 removed from extensions.enabledAddons
Prefs.js: {972ce4c6-7e08-4474-a285-3208198ce6fd}:15.0 removed from extensions.enabledAddons
Prefs.js: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 removed from extensions.enabledItems
Prefs.js: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Prefs.js: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13 removed from extensions.enabledItems
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaultenginename
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.selectedEngine
Prefs.js: "" removed from sweetim.toolbar.previous.keyword.URL
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} folder moved successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions folder moved successfully.
Folder C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}\ not found.
Folder C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\ not found.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\WebSearch.xml moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions folder moved successfully.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载全部链接\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Stahnou vse FlashGet3\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Stahnout FlashGet3\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载全部链接\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\0x00000001\ deleted successfully.
File Protocol\Handler\http\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\oledb\ deleted successfully.
File Protocol\Handler\http\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\0x00000001\ deleted successfully.
File Protocol\Handler\https\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\oledb\ deleted successfully.
File Protocol\Handler\https\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\0x00000001\ not found.
File Protocol\Handler\msdaipp\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\oledb\ not found.
File Protocol\Handler\msdaipp\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ not found.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\SysNative\perfh005.dat moved successfully.
C:\Windows\SysNative\perfh009.dat moved successfully.
C:\Windows\SysNative\perfc005.dat moved successfully.
C:\Windows\SysNative\perfc009.dat moved successfully.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
ADS C:\ProgramData\TEMP:D1B5B4F1 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
C:\WINDOWS\0FB5113B694A44D78496E0F251170AFB.TMP folder moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
C:\Users\Jumbo\AppData\Local\{67DB6F7E-0E28-4A86-9231-794DF08B13E7} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{C5461F59-4385-41A6-9D13-E79C24A90B83} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{92AC3B33-5A6F-4816-B3EF-7E135E604B41} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{7DDDFDBF-3F0A-430E-8DE5-1741EBFC7C84} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{B7FDEE9B-79D2-4F3F-8C3E-CFE9DF7832A4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{9C78075A-15EE-4A7B-AFF6-BEAA475C4845} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{08B961B8-673B-4CE5-815B-71BACD581040} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{7B5DA8C5-2F3D-44EC-8419-0233592E27C3} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{A97EEC6E-E063-44F1-9C62-97976879BCD6} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{DA4395FA-13A4-4461-95FB-58295B061CF4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{09270E3C-FA1D-4894-A096-698450FB4534} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{C104B239-3617-4478-A5AA-BF56CC946112} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1BEE0303-8474-4F4D-BDF5-A4B30D56965C} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{00E56DA3-B0D2-46A3-BB38-5502EC251774} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{3CBA40F6-73B1-4362-BFFA-A2395DEC9AC1} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{6E36B35D-28B5-45DB-B6BA-FA1E38FD95F0} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{77CC1B05-8FD4-4BF8-AD4A-5ACC492F705A} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{9CD129BF-ED2D-4112-B9A2-AE9FBC2DE73C} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1C9F7EFB-2AE8-49BC-8A24-C83D76083620} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{3EDEA59A-E1DB-4A0F-B999-52C6BA4792BE} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{F2147072-B7B1-4382-B271-6F72C82789A4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{D6D6B60D-C7CF-44FC-A8D0-2223E406ADF0} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{0494A0B8-5552-43A1-BA8B-E214FBE8B260} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{D6C218A4-6945-431B-9445-E31E3A236DB4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1AA29D41-D772-4D19-A242-3484BEE6D195} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{58E9D417-AD94-4C3E-8F53-A98EC4CF04E8} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{673AC914-7173-417B-A41F-B08F9885F0A8} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{75378B60-0744-4372-9FAA-1080CA6440DF} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{B9F912E0-B2CE-414A-A7B7-E6790CF7F156} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{15BFAA9B-B4C8-4239-AC6F-9C407CED56AB} folder moved successfully.
File\Folder [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] not found.
C:\Windows\SysNative\drivers\etc\hosts.ics moved successfully.
C:\Users\Jumbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 176676751 bytes
->Flash cache emptied: 568 bytes
User: Jumbo
->Temp folder emptied: 455584 bytes
->Temporary Internet Files folder emptied: 331970 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 426187605 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 172879 bytes
User: Public
->Temp folder emptied: 0 bytes
User: Robin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 78436921 bytes
->Flash cache emptied: 782 bytes
User: System Volume Information
->Temp folder emptied: 0 bytes
User: totalcmd
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 85248 bytes
RecycleBin emptied: 730714252 bytes
Total Files Cleaned = 1 348,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Guest
->Flash cache emptied: 0 bytes
User: Jumbo
->Flash cache emptied: 0 bytes
User: Public
User: Robin
->Flash cache emptied: 0 bytes
User: System Volume Information
User: totalcmd
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
Restore point Set: OTL Restore Point
[EMPTYJAVA]
User: All Users
User: Default
User: Default User
User: Guest
->Java cache emptied: 0 bytes
User: Jumbo
->Java cache emptied: 0 bytes
User: Public
User: Robin
User: System Volume Information
User: totalcmd
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01282013_200521
Files\Folders moved on Reboot...
C:\Users\Jumbo\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Jumbo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0GAEUMZK\ADSAdClient31[1].htm not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}\ not found.
Prefs.js: "WebSearch" removed from browser.search.defaultenginename
Prefs.js: S", "WebSearch" removed from browser.search.defaultenginename,S
Prefs.js: "" removed from browser.search.defaultthis.engineName
Prefs.js: "WebSearch" removed from browser.search.order.1
Prefs.js: S", "WebSearch" removed from browser.search.order.1,S
Prefs.js: "Google" removed from browser.search.selectedEngine
Prefs.js: S", "WebSearch" removed from browser.search.selectedEngine,S
Prefs.js: {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}:3.5 removed from extensions.enabledAddons
Prefs.js: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.7 removed from extensions.enabledAddons
Prefs.js: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.1 removed from extensions.enabledAddons
Prefs.js: {972ce4c6-7e08-4474-a285-3208198ce6fd}:15.0 removed from extensions.enabledAddons
Prefs.js: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 removed from extensions.enabledItems
Prefs.js: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Prefs.js: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13 removed from extensions.enabledItems
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaultenginename
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.selectedEngine
Prefs.js: "" removed from sweetim.toolbar.previous.keyword.URL
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} folder moved successfully.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions folder moved successfully.
Folder C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}\ not found.
Folder C:\Users\Jumbo\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\ not found.
C:\Users\Jumbo\AppData\Roaming\Mozilla\Firefox\Profiles\8ngrz4re.default\searchplugins\WebSearch.xml moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions folder moved successfully.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载全部链接\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Stahnou vse FlashGet3\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Stahnout FlashGet3\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\使用快车3下载全部链接\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\0x00000001\ deleted successfully.
File Protocol\Handler\http\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\http\oledb\ deleted successfully.
File Protocol\Handler\http\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\0x00000001\ deleted successfully.
File Protocol\Handler\https\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\https\oledb\ deleted successfully.
File Protocol\Handler\https\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\0x00000001\ not found.
File Protocol\Handler\msdaipp\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\oledb\ not found.
File Protocol\Handler\msdaipp\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ not found.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\SysNative\perfh005.dat moved successfully.
C:\Windows\SysNative\perfh009.dat moved successfully.
C:\Windows\SysNative\perfc005.dat moved successfully.
C:\Windows\SysNative\perfc009.dat moved successfully.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
ADS C:\ProgramData\TEMP:D1B5B4F1 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
C:\WINDOWS\0FB5113B694A44D78496E0F251170AFB.TMP folder moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
C:\Users\Jumbo\AppData\Local\{67DB6F7E-0E28-4A86-9231-794DF08B13E7} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{C5461F59-4385-41A6-9D13-E79C24A90B83} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{92AC3B33-5A6F-4816-B3EF-7E135E604B41} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{7DDDFDBF-3F0A-430E-8DE5-1741EBFC7C84} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{B7FDEE9B-79D2-4F3F-8C3E-CFE9DF7832A4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{9C78075A-15EE-4A7B-AFF6-BEAA475C4845} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{08B961B8-673B-4CE5-815B-71BACD581040} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{7B5DA8C5-2F3D-44EC-8419-0233592E27C3} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{A97EEC6E-E063-44F1-9C62-97976879BCD6} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{DA4395FA-13A4-4461-95FB-58295B061CF4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{09270E3C-FA1D-4894-A096-698450FB4534} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{C104B239-3617-4478-A5AA-BF56CC946112} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1BEE0303-8474-4F4D-BDF5-A4B30D56965C} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{00E56DA3-B0D2-46A3-BB38-5502EC251774} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{3CBA40F6-73B1-4362-BFFA-A2395DEC9AC1} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{6E36B35D-28B5-45DB-B6BA-FA1E38FD95F0} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{77CC1B05-8FD4-4BF8-AD4A-5ACC492F705A} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{9CD129BF-ED2D-4112-B9A2-AE9FBC2DE73C} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1C9F7EFB-2AE8-49BC-8A24-C83D76083620} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{3EDEA59A-E1DB-4A0F-B999-52C6BA4792BE} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{F2147072-B7B1-4382-B271-6F72C82789A4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{D6D6B60D-C7CF-44FC-A8D0-2223E406ADF0} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{0494A0B8-5552-43A1-BA8B-E214FBE8B260} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{D6C218A4-6945-431B-9445-E31E3A236DB4} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{1AA29D41-D772-4D19-A242-3484BEE6D195} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{58E9D417-AD94-4C3E-8F53-A98EC4CF04E8} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{673AC914-7173-417B-A41F-B08F9885F0A8} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{75378B60-0744-4372-9FAA-1080CA6440DF} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{B9F912E0-B2CE-414A-A7B7-E6790CF7F156} folder moved successfully.
C:\Users\Jumbo\AppData\Local\{15BFAA9B-B4C8-4239-AC6F-9C407CED56AB} folder moved successfully.
File\Folder [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] not found.
C:\Windows\SysNative\drivers\etc\hosts.ics moved successfully.
C:\Users\Jumbo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 176676751 bytes
->Flash cache emptied: 568 bytes
User: Jumbo
->Temp folder emptied: 455584 bytes
->Temporary Internet Files folder emptied: 331970 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 426187605 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 172879 bytes
User: Public
->Temp folder emptied: 0 bytes
User: Robin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 78436921 bytes
->Flash cache emptied: 782 bytes
User: System Volume Information
->Temp folder emptied: 0 bytes
User: totalcmd
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 85248 bytes
RecycleBin emptied: 730714252 bytes
Total Files Cleaned = 1 348,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Guest
->Flash cache emptied: 0 bytes
User: Jumbo
->Flash cache emptied: 0 bytes
User: Public
User: Robin
->Flash cache emptied: 0 bytes
User: System Volume Information
User: totalcmd
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
Restore point Set: OTL Restore Point
[EMPTYJAVA]
User: All Users
User: Default
User: Default User
User: Guest
->Java cache emptied: 0 bytes
User: Jumbo
->Java cache emptied: 0 bytes
User: Public
User: Robin
User: System Volume Information
User: totalcmd
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01282013_200521
Files\Folders moved on Reboot...
C:\Users\Jumbo\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Jumbo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0GAEUMZK\ADSAdClient31[1].htm not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
- jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Pokud si uvolnil místa na discích , jsou nějaké problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 122 hostů