Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Příspěvekod **Orcus** » 31 led 2016 16:04

Co tahle verze?

https://toolslib.net/downloads/viewdownload/20-adsfix/

Reklama

doktorcz · Příspěvekod **doktorcz** » 02 úno 2016 13:19

Pustil jsem Eset online scaner a vyhodil mi (smazal ) Mozila.bat a chrome.bat a operu a po reinstalaci je všechno OK - co se prohlížečů týká (chedotgame.com) Teď ještě bych poprosil jestli se dá nějakým způsobem odstranit ta zamčená složka. Změna oprávnění nepomohla.

doktorcz · Příspěvekod **doktorcz** » 02 úno 2016 14:05

Ta druhá verse taky nejde.To samé.

Příspěvekod **jaro3** » 02 úno 2016 17:01

Teď ještě bych poprosil jestli se dá nějakým způsobem odstranit ta zamčená složka. Změna oprávnění nepomohla.

jaká složka?

doktorcz · Příspěvekod **doktorcz** » 02 úno 2016 19:30

Je to od toho 360safe co jsem odinstaloval .Zůstala tam složka 360 a když jí chci smazat,tak mi to píše,že nemám práva a abych požádal administrátora.Zkoušel jsem měnit ve vlastnostech složky ale stejně nejde. Revo mi jí jakoby odstraní (napíše to že je )ale něco tam zůstane do dalšího spuštění,že se to údajně odstraní.Po restartu je to tam ale pořád všechno.neodstraní se vůbec nic. A občas když klepnu na nějakej soubor pravim,tak se mi u ikony koše ukážou čínský znaky. V těch log výpisech se objevuje jako ,,360.cn,, ,Někde jsem to v logu zaregistroval jako driver 360 nebo tak nějak.

Příspěvekod **jaro3** » 03 úno 2016 09:20

dej znovu OTL ..

doktorcz · Příspěvekod **doktorcz** » 03 úno 2016 12:09

OTL logfile created on: 3.2.2016 11:53:06 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uživatel\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 4,00 Gb Available Physical Memory | 66,63% Memory free
7,25 Gb Paging File | 5,26 Gb Available in Paging File | 72,52% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,35 Gb Total Space | 52,42 Gb Free Space | 22,56% Space Free | Partition Type: NTFS
Drive J: | 931,48 Gb Total Space | 329,93 Gb Free Space | 35,42% Space Free | Partition Type: NTFS
Drive K: | 14,46 Gb Total Space | 2,23 Gb Free Space | 15,39% Space Free | Partition Type: FAT32

Computer Name: UZIVATEL_PC | User Name: Uživatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found
PRC - C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Users\Uživatel\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\Uživatel\AppData\Local\Degoo\DegooHealthCheck.exe (Degoo Backup AB)
PRC - C:\Users\Uživatel\AppData\Local\Degoo\Degoo.exe (Degoo Backup AB)
PRC - C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
PRC - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
PRC - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe (ZONER software)
PRC - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (DEVGURU Co., LTD.)
PRC - C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe (MyHeritage)
PRC - C:\Users\Uživatel\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
PRC - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
PRC - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._core_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._controls_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._windows_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._gdi_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._misc_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\windows._lib_cacheinvalidation.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._wizard.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32security.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._animate.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._html2.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32ts.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32profile.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\unicodedata.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32com.shell.shell.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32gui.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32file.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32api.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\usb_ext.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32inet.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32process.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32pdh.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32pipe.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32event.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\thumbnails_ext.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32crypt.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\select.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pysqlite2._sqlite.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pyexpat.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_ssl.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_hashlib.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_elementtree.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pywintypes27.dll ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_ctypes.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_socket.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_psutil_windows.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_multiprocessing.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_yappi.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\common.time34.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\hashobjs_ext.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\fastpath.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\enterprisedataadapter.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\librsync.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32service.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32ts.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32security.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32process.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32profile.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32gui.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32file.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32event.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32api.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\sip.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\select.pyd ()
MOD - C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll ()
MOD - C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll ()
MOD - C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll ()

========== Services (SafeList) ==========

SRV:64bit: - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (w3logsvc) -- C:\Windows\SysNative\inetsrv\w3logsvc.dll (Microsoft Corporation)
SRV:64bit: - (MSMQ) -- C:\Windows\SysNative\mqsvc.exe (Microsoft Corporation)
SRV:64bit: - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
SRV:64bit: - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SRV:64bit: - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)
SRV:64bit: - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)
SRV:64bit: - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SRV:64bit: - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)
SRV:64bit: - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
SRV:64bit: - (tiledatamodelsvc) -- C:\Windows\SysNative\tileobjserver.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)
SRV:64bit: - (UsoSvc) -- C:\Windows\SysNative\usocore.dll (Microsoft Corporation)
SRV:64bit: - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)
SRV:64bit: - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)
SRV:64bit: - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
SRV:64bit: - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
SRV:64bit: - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
SRV:64bit: - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)
SRV:64bit: - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)
SRV:64bit: - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)
SRV:64bit: - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)
SRV:64bit: - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)
SRV:64bit: - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)
SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:64bit: - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)
SRV:64bit: - (DcpSvc) -- C:\Windows\SysNative\dcpsvc.dll (Microsoft Corporation)
SRV:64bit: - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV:64bit: - (UserDataSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UserDataSvc_Session1) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc_Session1) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc_Session1) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc_Session3) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc_Session1) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV:64bit: - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
SRV:64bit: - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:64bit: - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (ZhuDongFangYu) -- C:\Program Files (x86)\360\360safe\deepscan\ZhuDongFangYu.exe (360.cn)
SRV - (WAS) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (W3SVC) -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll (Microsoft Corporation)
SRV - (w3logsvc) -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll (Microsoft Corporation)
SRV - (AppHostSvc) -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll (Microsoft Corporation)
SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes)
SRV - (dbupdatem) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
SRV - (dbupdate) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)
SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\SysWOW64\lfsvc.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (ss_conn_service) -- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (DEVGURU Co., LTD.)
SRV - (IJPLMSVC) -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe ()
SRV - (UPnPService) -- C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe (Magix AG)

========== Driver Services (SafeList) ==========

DRV:64bit: - (360AntiHacker) -- C:\Windows\SysNative\drivers\360AntiHacker64.sys (360.cn)
DRV:64bit: - (athur) -- C:\Windows\SysNative\drivers\athurx.sys (Atheros Communications, Inc.)
DRV:64bit: - (360FsFlt) -- C:\Windows\SysNative\drivers\360FsFlt.sys (360.cn)
DRV:64bit: - (BAPIDRV) -- C:\Windows\SysNative\drivers\BAPIDRV64.SYS (360.cn)
DRV:64bit: - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV:64bit: - (360Hvm) -- C:\Windows\SysNative\drivers\360Hvm64.sys (360安全中心)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
DRV:64bit: - (MQAC) -- C:\Windows\SysNative\drivers\mqac.sys (Microsoft Corporation)
DRV:64bit: - (360Box64) -- C:\Windows\SysNative\drivers\360Box64.sys (360.cn)
DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:64bit: - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (UcmUcsi) -- C:\Windows\SysNative\drivers\UcmUcsi.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV:64bit: - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (IoQos) -- C:\Windows\SysNative\drivers\ioqos.sys (Microsoft Corporation)
DRV:64bit: - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)
DRV:64bit: - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)
DRV:64bit: - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys ()
DRV:64bit: - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (UrsChipidea) -- C:\Windows\SysNative\drivers\urschipidea.sys (Microsoft Corporation)
DRV:64bit: - (UrsSynopsys) -- C:\Windows\SysNative\drivers\urssynopsys.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV:64bit: - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV:64bit: - (UfxChipidea) -- C:\Windows\SysNative\drivers\UfxChipidea.sys (Microsoft Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)
DRV:64bit: - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)
DRV:64bit: - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (LSI Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:64bit: - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)
DRV:64bit: - (swenum) -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (CapImg) -- C:\Windows\SysNative\drivers\capimg.sys (Microsoft Corporation)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)
DRV:64bit: - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (genericusbfn) -- C:\Windows\SysNative\drivers\genericusbfn.sys (Microsoft Corporation)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (fcvsc) -- C:\Windows\SysNative\drivers\fcvsc.sys (Microsoft Corporation)
DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:64bit: - (DsArk) -- C:\Windows\SysNative\drivers\DsArk64.sys (360.cn)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LUsbFilt) -- C:\Windows\SysNative\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV:64bit: - (IDMWFP) -- C:\Windows\SysNative\drivers\idmwfp.sys (Tonec Inc.)
DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (pcouffin) -- C:\Windows\SysNative\drivers\pcouffin.sys (VSO Software)
DRV:64bit: - (RTL8023x64) -- C:\Windows\SysNative\drivers\Rtnic64.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.)
DRV:64bit: - (EUFDDISK) -- C:\Windows\SysNative\drivers\EuFdDisk.sys (CHENGDU YIWO Tech Development Co., Ltd)
DRV:64bit: - (EUBAKUP) -- C:\Windows\SysNative\drivers\eubakup.sys (CHENGDU YIWO Tech Development Co., Ltd)
DRV:64bit: - (EUBKMON) -- C:\Windows\SysNative\drivers\EUBKMON.sys ()
DRV:64bit: - (EUDSKACS) -- C:\Windows\SysNative\drivers\eudskacs.sys (CHENGDU YIWO Tech Development Co., Ltd)
DRV:64bit: - (360Camera) -- C:\Windows\SysNative\drivers\360Camera64.sys (360.cn)
DRV:64bit: - (pwdrvio) -- C:\Windows\SysNative\pwdrvio.sys ()
DRV:64bit: - (pwdspio) -- C:\Windows\SysNative\pwdspio.sys ()
DRV:64bit: - (Revoflt) -- C:\Windows\SysNative\drivers\revoflt.sys (VS Revo Group)
DRV:64bit: - (AtcL001) -- C:\Windows\SysNative\drivers\l160x64.sys (Atheros Communications, Inc.)
DRV - (swenum) -- C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys (Microsoft Corporation)
DRV - (HWiNFO32) -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS (REALiX(tm))
DRV - (ISODrive) -- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (EZB Systems, Inc.)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\..\SearchScopes,DefaultScope =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "www.centrum.cz"
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.5.1
FF - prefs.js..extensions.enabledAddons: mozilla_cc2%40internetdownloadmanager.com:6.23.22
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:44.0
FF - user.js - File not found

doktorcz · Příspěvekod **doktorcz** » 03 úno 2016 12:09

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 44.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 44.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2016.01.16 00:03:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 38.5.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc2@internetdownloadmanager.com: C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015.09.23 10:20:36 | 000,029,743 | ---- | M] ()
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.1\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 38.5.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc2@internetdownloadmanager.com: C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015.09.23 10:20:36 | 000,029,743 | ---- | M] ()
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Uživatel\AppData\Roaming\IDM\idmmzcc5 [2016.02.02 14:19:16 | 000,000,000 | ---D | M]

[2016.01.30 10:38:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uživatel\AppData\Roaming\mozilla\Extensions
[2016.01.30 17:21:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uživatel\AppData\Roaming\mozilla\Firefox\Profiles\pw77fm83.default-1453721257506\extensions
[2016.01.30 17:15:47 | 000,074,654 | ---- | M] () (No name found) -- C:\Users\Uživatel\AppData\Roaming\mozilla\firefox\profiles\pw77fm83.default-1453721257506\extensions\translator@zoli.bod.xpi
[2016.02.02 12:45:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2016.02.02 12:45:16 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2015.09.23 10:20:36 | 000,029,743 | ---- | M] () (No name found) -- C:\PROGRAM FILES (X86)\INTERNET DOWNLOAD MANAGER\IDMMZCC2.XPI
File not found (No name found) -- C:\USERS\UĹĽIVATEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PW77FM83.DEFAULT-1453721257506\EXTENSIONS\TRANSLATOR@ZOLI.BOD.XPI

========== Chrome ==========

CHR - Extension: No name found = C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod\3.3.7_0\
CHR - Extension: No name found = C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\
CHR - Extension: No name found = C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.23.15_0\
CHR - Extension: No name found = C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek\6.25.10_0\

O1 HOSTS File: ([2016.01.27 19:04:45 | 000,000,753 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2:64bit: - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll File not found
O2:64bit: - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll File not found
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Dropbox] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.)
O4 - HKLM..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe (MyHeritage)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKCU..\Run: [OneDrive] C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Users\Uživatel\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE (ZONER software)
O4 - Startup: C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Degoo .lnk = C:\Users\Uživatel\AppData\Local\Degoo\Degoo.exe (Degoo Backup AB)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O8:64bit: - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8:64bit: - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{11d222f1-9a0c-4d7e-b2bd-20aa0ccaeea3}: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\WINDOWS\System32\Userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\System32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015.09.09 16:38:55 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016.02.02 16:21:10 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\CEF
[2016.02.02 16:21:01 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\Adobe
[2016.02.02 13:13:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2016.02.02 09:09:36 | 000,000,000 | -HSD | C] -- C:\WINDOWS\SysWow64\AI_RecycleBin
[2016.01.31 19:38:11 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\FSDART
[2016.01.31 19:38:06 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\F-Secure
[2016.01.31 19:38:06 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
[2016.01.31 11:27:09 | 000,000,000 | ---D | C] -- C:\QuickDiag
[2016.01.30 21:55:45 | 000,224,968 | ---- | C] (ESET) -- C:\Users\Uživatel\Desktop\ESETPoweliksCleaner.exe
[2016.01.30 18:33:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Caphyon
[2016.01.30 16:16:24 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\Geek Uninstaller
[2016.01.30 15:58:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Martau
[2016.01.30 15:58:15 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 6
[2016.01.30 15:45:49 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2016.01.30 10:27:04 | 000,000,000 | ---D | C] -- C:\_OTL
[2016.01.30 10:18:41 | 000,206,944 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\javaw.exe
[2016.01.30 10:18:41 | 000,110,176 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll
[2016.01.30 10:18:40 | 000,206,944 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysNative\java.exe
[2016.01.29 16:50:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Uživatel\Desktop\OTL.exe
[2016.01.28 17:01:23 | 000,000,000 | RHSD | C] -- C:\360SANDBOX
[2016.01.28 12:58:41 | 000,000,000 | ---D | C] -- C:\FRST
[2016.01.28 12:57:34 | 002,370,560 | ---- | C] (Farbar) -- C:\Users\Uživatel\Desktop\FRST64_2.exe
[2016.01.28 12:56:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2016.01.28 12:56:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo
[2016.01.28 12:50:30 | 005,200,384 | ---- | C] (AVAST Software) -- C:\Users\Uživatel\Desktop\aswmbr.exe
[2016.01.28 12:33:05 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Desktop\backups
[2016.01.28 11:53:18 | 000,000,000 | ---D | C] -- C:\AVG_Remover
[2016.01.28 11:34:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\SysWow64\Microsoft
[2016.01.27 20:19:14 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\VS Revo Group
[2016.01.27 19:55:06 | 000,000,000 | ---D | C] -- C:\ProgramData\IDM
[2016.01.27 19:54:07 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2016.01.27 19:42:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2016.01.27 19:42:33 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\Temp
[2016.01.27 18:04:08 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2016.01.27 17:18:16 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Desktop\Nová složka
[2016.01.26 07:02:48 | 000,079,064 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\hxmrkdcb.sys
[2016.01.25 19:53:33 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Degoo
[2016.01.25 19:50:03 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\.swt
[2016.01.25 19:49:53 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Local\Degoo
[2016.01.25 19:49:42 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Degoo
[2016.01.25 12:27:44 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Desktop\Původní data aplikace Firefox
[2016.01.25 09:11:41 | 000,012,872 | ---- | C] (SurfRight B.V.) -- C:\WINDOWS\SysNative\bootdelete.exe
[2016.01.24 20:03:27 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Desktop\Fleška
[2016.01.21 16:46:12 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Doctor Web
[2016.01.19 15:13:16 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Documents\Inbox Storage
[2016.01.17 18:43:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2016.01.16 20:06:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ariva Editor_SATELIT
[2016.01.16 19:26:43 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\Homepager
[2016.01.16 00:16:31 | 000,136,272 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\DsArk64.sys
[2016.01.16 00:03:42 | 000,375,376 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\360FsFlt.sys
[2016.01.16 00:03:42 | 000,181,328 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\BAPIDRV64.SYS
[2016.01.16 00:03:40 | 000,191,568 | ---- | C] (360安全中心) -- C:\WINDOWS\SysNative\drivers\360Hvm64.sys
[2016.01.16 00:03:40 | 000,137,808 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\360AntiHacker64.sys
[2016.01.16 00:03:40 | 000,040,520 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\360Camera64.sys
[2016.01.16 00:03:39 | 000,321,616 | ---- | C] (360.cn) -- C:\WINDOWS\SysNative\drivers\360Box64.sys
[2016.01.13 16:35:23 | 021,873,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016.01.13 16:35:19 | 018,802,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016.01.13 16:35:11 | 000,695,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2016.01.13 16:35:11 | 000,368,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP4SDECD.DLL
[2016.01.13 16:35:11 | 000,305,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSDECD.DLL
[2016.01.13 16:35:11 | 000,188,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\COLORCNV.DLL
[2016.01.13 16:35:11 | 000,083,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfvdsp.dll
[2016.01.13 16:35:10 | 002,641,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2016.01.13 16:35:10 | 002,459,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2016.01.13 16:35:10 | 000,787,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2016.01.13 16:35:10 | 000,377,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP4SDECD.DLL
[2016.01.13 16:35:10 | 000,345,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSDECD.DLL
[2016.01.13 16:35:10 | 000,205,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\COLORCNV.DLL
[2016.01.13 16:35:10 | 000,115,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VIDRESZR.DLL
[2016.01.13 16:35:09 | 002,162,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVENCOD.DLL
[2016.01.13 16:35:09 | 001,991,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVENCOD.DLL
[2016.01.13 16:35:09 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVXENCD.DLL
[2016.01.13 16:35:09 | 000,634,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVXENCD.DLL
[2016.01.13 16:35:09 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSENCD.DLL
[2016.01.13 16:35:09 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSENCD.DLL
[2016.01.13 16:35:09 | 000,107,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VIDRESZR.DLL
[2016.01.13 16:35:09 | 000,072,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfvdsp.dll
[2016.01.13 16:35:08 | 001,672,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2016.01.13 16:35:08 | 001,541,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2016.01.13 16:35:08 | 001,063,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2adec.dll
[2016.01.13 16:35:08 | 000,882,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2adec.dll
[2016.01.13 16:35:08 | 000,862,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016.01.13 16:35:08 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016.01.13 16:35:07 | 001,270,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2016.01.13 16:35:07 | 001,255,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2016.01.13 16:35:07 | 001,070,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2016.01.13 16:35:07 | 000,751,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOE.DLL
[2016.01.13 16:35:07 | 000,696,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOE.DLL
[2016.01.13 16:35:06 | 001,150,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016.01.13 16:35:06 | 001,106,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016.01.13 16:35:06 | 001,009,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2016.01.13 16:35:06 | 000,890,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2016.01.13 16:35:06 | 000,714,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016.01.13 16:35:06 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016.01.13 16:35:05 | 000,931,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2016.01.13 16:35:05 | 000,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2016.01.13 16:35:05 | 000,779,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2016.01.13 16:35:05 | 000,667,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2016.01.13 16:35:04 | 002,824,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2016.01.13 16:35:04 | 000,678,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2016.01.13 16:35:04 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2016.01.13 16:35:04 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFWMAAEC.DLL
[2016.01.13 16:35:04 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFWMAAEC.DLL
[2016.01.13 16:35:03 | 008,022,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016.01.13 16:35:03 | 002,463,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016.01.13 16:35:03 | 000,233,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mftranscode.dll
[2016.01.13 16:35:03 | 000,090,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devenum.dll
[2016.01.13 16:35:03 | 000,082,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2016.01.13 16:35:02 | 007,523,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016.01.13 16:35:02 | 000,772,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016.01.13 16:35:02 | 000,635,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2016.01.13 16:35:01 | 000,723,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016.01.13 16:35:01 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfh264enc.dll
[2016.01.13 16:35:01 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfh264enc.dll
[2016.01.13 16:35:01 | 000,441,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016.01.13 16:35:01 | 000,208,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mftranscode.dll
[2016.01.13 16:35:00 | 002,152,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016.01.13 16:35:00 | 000,379,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2016.01.13 16:35:00 | 000,305,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2016.01.13 16:35:00 | 000,249,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RESAMPLEDMO.DLL
[2016.01.13 16:35:00 | 000,232,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RESAMPLEDMO.DLL
[2016.01.13 16:34:59 | 005,454,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016.01.13 16:34:45 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2016.01.13 16:34:41 | 000,278,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP43DECD.DLL
[2016.01.13 16:34:37 | 000,277,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MPG4DECD.DLL
[2016.01.13 16:34:35 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgrcli.dll
[2016.01.13 16:34:17 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2016.01.13 16:34:16 | 002,445,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2016.01.13 16:34:16 | 000,784,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016.01.13 16:34:16 | 000,781,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2016.01.13 16:34:16 | 000,251,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP43DECD.DLL
[2016.01.13 16:34:16 | 000,250,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MPG4DECD.DLL
[2016.01.13 16:34:16 | 000,119,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2016.01.13 16:34:16 | 000,100,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2016.01.13 16:34:15 | 001,591,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2016.01.13 16:34:15 | 000,658,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2016.01.13 16:34:15 | 000,645,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016.01.13 16:34:15 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016.01.13 16:34:14 | 001,817,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2016.01.13 16:34:13 | 001,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016.01.13 16:34:13 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016.01.13 16:34:13 | 000,243,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2016.01.13 16:34:13 | 000,116,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2016.01.13 16:34:13 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usermgrcli.dll
[2016.01.13 16:34:12 | 001,234,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe
[2016.01.13 16:34:12 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2016.01.13 16:34:12 | 000,771,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016.01.13 16:34:12 | 000,650,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2016.01.13 16:34:12 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016.01.13 16:34:12 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016.01.10 12:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\MiniTool Partition Wizard Free 9.1
[2016.01.10 11:05:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Remo Repair AVI 2.0
[2016.01.10 10:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\VIRTUALDUB
[2016.01.09 20:08:53 | 000,000,000 | ---D | C] -- C:\Brother's Keeper 7
[2016.01.09 20:07:12 | 000,880,640 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\SysWow64\UniBox10.ocx
[2016.01.09 20:07:12 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\unicows.dll
[2016.01.09 20:07:12 | 000,170,496 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFPNG12N.DLL
[2016.01.09 20:07:12 | 000,153,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\temp.000
[2016.01.09 20:07:12 | 000,121,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFMPG12N.DLL
[2016.01.09 20:07:12 | 000,056,320 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFPSD12N.DLL
[2016.01.09 20:07:12 | 000,042,496 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFGIF12N.DLL
[2016.01.09 20:07:12 | 000,035,840 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFLMA12N.DLL
[2016.01.09 20:07:12 | 000,033,280 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFPCX12N.DLL
[2016.01.09 20:07:12 | 000,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFLMB12N.DLL
[2016.01.09 20:07:12 | 000,031,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFEPS12N.DLL
[2016.01.09 20:07:12 | 000,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFWPG12N.DLL
[2016.01.09 20:07:12 | 000,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFIMG12N.DLL
[2016.01.09 20:07:12 | 000,026,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFPCD12N.DLL
[2016.01.09 20:07:12 | 000,026,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFMSP12N.DLL
[2016.01.09 20:07:12 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brother's Keeper 7
[2016.01.09 20:07:11 | 000,751,104 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LTANN12N.DLL
[2016.01.09 20:07:11 | 000,227,328 | ---- | C] (MicroHelp, Inc.) -- C:\WINDOWS\SysWow64\comppl32.dll
[2016.01.09 20:07:11 | 000,164,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ComCt232.ocx
[2016.01.09 20:07:11 | 000,122,880 | ---- | C] (Crescent Division of Progress Software Corporation) -- C:\WINDOWS\SysWow64\qpro32.dll
[2016.01.09 20:07:11 | 000,103,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSComm32.ocx
[2016.01.09 20:07:11 | 000,062,464 | ---- | C] (Btrieve Technologies, Inc.) -- C:\WINDOWS\SysWow64\wbtrv32.dll
[2016.01.09 20:07:11 | 000,039,936 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LTTWN12N.DLL
[2016.01.09 20:07:11 | 000,024,576 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\SysWow64\LFAVI12N.DLL
[2016.01.09 20:07:09 | 001,011,712 | ---- | C] (Janus Systems SA de CV) -- C:\WINDOWS\SysWow64\Gridex16.ocx
[2016.01.09 20:07:09 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TABCTL32.OCX
[2016.01.09 20:07:09 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RichTx32.ocx
[2016.01.09 20:07:09 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SysInfo.ocx
[2016.01.09 17:01:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2016.01.07 17:14:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2016.01.06 08:42:03 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\Documents\MyHeritage
[2016.01.06 08:42:03 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\MyHeritage
[2016.01.06 08:42:03 | 000,000,000 | ---D | C] -- C:\ProgramData\MyHeritage
[2016.01.06 08:41:42 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
[2016.01.06 08:41:40 | 002,029,056 | ---- | C] (Bytescout) -- C:\WINDOWS\SysWow64\PDFDocScout.DLL
[2016.01.06 08:41:40 | 000,608,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comctl32.ocx
[2016.01.06 08:41:40 | 000,606,208 | ---- | C] (Lorenzi Davide) -- C:\WINDOWS\SysWow64\HexUniRTFBox.ocx
[2016.01.06 08:41:40 | 000,372,736 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysWow64\ijl15.dll
[2016.01.06 08:41:40 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmapi32.ocx
[2016.01.06 08:41:39 | 000,000,000 | ---D | C] -- C:\Users\Uživatel\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2016.01.06 08:40:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyHeritage
[2016.01.05 19:43:18 | 000,826,872 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016.01.05 19:43:18 | 000,176,632 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2015.03.29 10:19:53 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Uživatel\AppData\Roaming\pcouffin.sys

doktorcz · Příspěvekod **doktorcz** » 03 úno 2016 12:10

========== Files - Modified Within 30 Days ==========

[2016.02.03 11:58:02 | 000,000,980 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016.02.03 11:57:57 | 000,016,148 | ---- | M] () -- C:\WINDOWS\SysNative\UZIVATEL_PC_Uživatel_HistoryPrediction.bin
[2016.02.03 08:27:04 | 402,653,184 | -HS- | M] () -- C:\swapfile.sys
[2016.02.02 17:03:19 | 009,779,774 | ---- | M] () -- C:\Users\Uživatel\Desktop\Pro muže.mp4
[2016.02.02 14:15:14 | 000,001,078 | ---- | M] () -- C:\Users\Uživatel\Desktop\Internet Download Manager.lnk
[2016.02.02 13:13:50 | 000,001,204 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2016.02.02 13:11:54 | 000,000,976 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016.02.02 12:54:02 | 000,002,332 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016.02.02 12:45:23 | 000,001,222 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2016.02.02 08:52:26 | 000,840,798 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016.02.02 08:52:26 | 000,358,304 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2016.02.02 08:52:26 | 000,356,694 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016.02.02 08:52:26 | 000,064,378 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2016.02.02 08:52:26 | 000,053,742 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016.02.02 08:37:05 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016.02.02 08:34:45 | 536,170,495 | -HS- | M] () -- C:\hiberfil.sys
[2016.02.01 14:28:14 | 000,012,467 | ---- | M] () -- C:\Users\Uživatel\Desktop\chalifát.PNG
[2016.01.30 21:55:46 | 000,224,968 | ---- | M] (ESET) -- C:\Users\Uživatel\Desktop\ESETPoweliksCleaner.exe
[2016.01.30 15:58:26 | 000,000,016 | ---- | M] () -- C:\ProgramData\mntemp
[2016.01.30 15:58:22 | 000,000,888 | ---- | M] () -- C:\Users\Public\Desktop\Total Uninstall 6.lnk
[2016.01.30 15:49:15 | 000,138,206 | ---- | M] () -- C:\Users\Uživatel\Desktop\Výstřižek1.PNG
[2016.01.29 18:26:58 | 000,088,115 | ---- | M] () -- C:\Users\Uživatel\Desktop\Výstřižek.PNG
[2016.01.29 16:50:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uživatel\Desktop\OTL.exe
[2016.01.28 17:12:33 | 000,165,376 | ---- | M] () -- C:\Users\Uživatel\Desktop\SystemLook_x64_2.exe
[2016.01.28 12:57:36 | 002,370,560 | ---- | M] (Farbar) -- C:\Users\Uživatel\Desktop\FRST64_2.exe
[2016.01.28 12:56:08 | 000,001,261 | ---- | M] () -- C:\Users\Uživatel\Desktop\CrystalDiskInfo.lnk
[2016.01.28 12:53:23 | 000,000,512 | ---- | M] () -- C:\Users\Uživatel\Desktop\MBR.dat
[2016.01.28 12:50:32 | 005,200,384 | ---- | M] (AVAST Software) -- C:\Users\Uživatel\Desktop\aswmbr.exe
[2016.01.27 19:50:04 | 000,000,008 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2016.01.27 19:04:45 | 000,000,753 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2016.01.27 19:01:45 | 000,024,064 | ---- | M] () -- C:\WINDOWS\zoek-delete.exe
[2016.01.27 18:04:12 | 000,028,272 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\TrueSight.sys
[2016.01.26 16:23:23 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016.01.26 16:22:51 | 000,001,171 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016.01.26 10:39:26 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2016.01.26 10:39:26 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2016.01.26 07:02:49 | 000,079,064 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\hxmrkdcb.sys
[2016.01.26 07:02:48 | 000,000,262 | ---- | M] () -- C:\WINDOWS\System\vsfg
[2016.01.25 19:49:56 | 000,001,205 | ---- | M] () -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Degoo .lnk
[2016.01.25 19:49:56 | 000,001,183 | ---- | M] () -- C:\Users\Uživatel\Desktop\Degoo.lnk
[2016.01.25 14:12:43 | 524,288,000 | ---- | M] () -- C:\REMOVE_THIS_FILE.livecd.swap
[2016.01.25 09:11:41 | 000,012,872 | ---- | M] (SurfRight B.V.) -- C:\WINDOWS\SysNative\bootdelete.exe
[2016.01.22 17:59:22 | 000,000,912 | ---- | M] () -- C:\Users\Uživatel\Desktop\Start Tor Browser.lnk
[2016.01.19 12:14:33 | 003,252,349 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\Cat.DB
[2016.01.16 00:03:40 | 000,000,001 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\360Hvm64.dat
[2016.01.12 14:27:53 | 000,000,364 | ---- | M] () -- C:\WINDOWS\SysNative\.crusader
[2016.01.10 13:38:26 | 000,000,082 | ---- | M] () -- C:\WINDOWS\SysWow64\winsevr.dat
[2016.01.06 08:41:42 | 000,001,198 | ---- | M] () -- C:\Users\Uživatel\Desktop\MyHeritage Family Tree Builder.lnk
[2016.01.05 11:41:32 | 000,376,275 | ---- | M] () -- C:\Users\Uživatel\Documents\IMG_20160105_0001.jpg
[2016.01.05 11:41:32 | 000,376,275 | ---- | M] () -- C:\Users\Uživatel\Desktop\IMG_20160105_0001.jpg
[2016.01.05 04:07:02 | 000,377,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP4SDECD.DLL
[2016.01.05 04:07:00 | 002,463,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2016.01.05 04:06:57 | 008,022,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016.01.05 04:06:56 | 001,270,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2016.01.05 04:06:56 | 000,119,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2016.01.05 04:06:55 | 001,063,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2adec.dll
[2016.01.05 04:06:43 | 001,991,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVENCOD.DLL
[2016.01.05 04:04:56 | 000,249,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RESAMPLEDMO.DLL
[2016.01.05 04:04:55 | 002,641,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2016.01.05 04:04:51 | 000,784,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2016.01.05 04:04:50 | 002,824,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2016.01.05 04:04:50 | 001,591,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2016.01.05 04:04:50 | 001,150,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2016.01.05 04:04:50 | 000,779,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2016.01.05 04:04:50 | 000,772,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2016.01.05 04:04:50 | 000,233,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mftranscode.dll
[2016.01.05 04:04:50 | 000,083,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfvdsp.dll
[2016.01.05 04:04:49 | 000,787,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2016.01.05 04:04:49 | 000,751,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOE.DLL
[2016.01.05 04:04:49 | 000,115,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VIDRESZR.DLL
[2016.01.05 04:04:48 | 000,862,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2016.01.05 04:04:48 | 000,090,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devenum.dll
[2016.01.05 04:04:45 | 000,250,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MPG4DECD.DLL
[2016.01.05 04:04:42 | 000,667,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2016.01.05 04:04:41 | 000,243,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2016.01.05 03:59:40 | 000,781,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2016.01.05 03:52:47 | 000,441,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2016.01.05 03:50:47 | 000,723,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2016.01.05 03:50:31 | 001,083,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016.01.05 03:50:31 | 000,205,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\COLORCNV.DLL
[2016.01.05 03:50:29 | 000,345,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSDECD.DLL
[2016.01.05 03:50:27 | 001,817,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2016.01.05 03:50:27 | 000,251,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP43DECD.DLL
[2016.01.05 03:30:46 | 000,882,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2adec.dll
[2016.01.05 03:30:28 | 002,152,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2016.01.05 03:30:27 | 000,368,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP4SDECD.DLL
[2016.01.05 03:30:23 | 001,106,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2016.01.05 03:30:21 | 000,100,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2016.01.05 03:30:19 | 002,162,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVENCOD.DLL
[2016.01.05 03:30:14 | 002,459,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2016.01.05 03:30:06 | 000,232,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RESAMPLEDMO.DLL
[2016.01.05 03:29:53 | 000,208,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mftranscode.dll
[2016.01.05 03:28:56 | 000,635,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2016.01.05 03:28:45 | 000,072,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfvdsp.dll
[2016.01.05 03:28:31 | 000,645,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2016.01.05 03:28:19 | 002,445,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2016.01.05 03:28:19 | 000,277,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MPG4DECD.DLL
[2016.01.05 03:28:17 | 000,107,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VIDRESZR.DLL
[2016.01.05 03:28:13 | 000,696,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOE.DLL
[2016.01.05 03:28:13 | 000,695,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2016.01.05 03:28:07 | 000,714,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2016.01.05 03:28:07 | 000,082,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2016.01.05 03:28:01 | 000,116,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2016.01.05 03:21:40 | 000,658,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2016.01.05 03:18:19 | 021,873,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016.01.05 03:15:58 | 000,931,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL
[2016.01.05 03:15:34 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll
[2016.01.05 03:15:04 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgrcli.dll
[2016.01.05 03:10:49 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfh264enc.dll
[2016.01.05 03:10:26 | 000,305,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSDECD.DLL
[2016.01.05 03:10:25 | 000,278,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP43DECD.DLL
[2016.01.05 03:10:25 | 000,188,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\COLORCNV.DLL
[2016.01.05 03:09:22 | 001,234,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitstatic.exe
[2016.01.05 03:09:22 | 000,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2016.01.05 03:02:46 | 001,672,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2016.01.05 03:02:19 | 000,379,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2016.01.05 03:02:13 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2016.01.05 03:01:34 | 000,305,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2016.01.05 03:00:06 | 000,826,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2016.01.05 03:00:01 | 000,771,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016.01.05 02:59:56 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2016.01.05 02:57:35 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2016.01.05 02:57:28 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2016.01.05 02:56:18 | 007,523,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016.01.05 02:51:52 | 001,009,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2016.01.05 02:51:41 | 001,255,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2016.01.05 02:51:37 | 000,447,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSENCD.DLL
[2016.01.05 02:51:33 | 000,634,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVXENCD.DLL
[2016.01.05 02:51:30 | 000,463,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFWMAAEC.DLL
[2016.01.05 02:44:54 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll
[2016.01.05 02:44:37 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usermgrcli.dll
[2016.01.05 02:42:16 | 000,871,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL
[2016.01.05 02:38:09 | 000,556,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfh264enc.dll
[2016.01.05 02:32:29 | 001,541,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2016.01.05 02:32:01 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2016.01.05 02:31:52 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2016.01.05 02:31:22 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2016.01.05 02:30:54 | 018,802,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016.01.05 02:29:25 | 000,650,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2016.01.05 02:24:15 | 005,454,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016.01.05 02:20:06 | 000,890,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2016.01.05 02:19:55 | 001,070,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2016.01.05 02:19:55 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSENCD.DLL
[2016.01.05 02:19:42 | 000,747,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVXENCD.DLL
[2016.01.05 02:19:41 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFWMAAEC.DLL

========== Files Created - No Company Name ==========

[2016.02.03 11:57:57 | 000,016,148 | ---- | C] () -- C:\WINDOWS\SysNative\UZIVATEL_PC_Uživatel_HistoryPrediction.bin
[2016.02.02 17:03:14 | 009,779,774 | ---- | C] () -- C:\Users\Uživatel\Desktop\Pro muže.mp4
[2016.02.02 14:13:41 | 000,001,078 | ---- | C] () -- C:\Users\Uživatel\Desktop\Internet Download Manager.lnk
[2016.02.02 13:13:50 | 000,001,204 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2016.02.02 13:13:50 | 000,001,204 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2016.02.02 12:54:02 | 000,002,344 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016.02.02 12:54:02 | 000,002,332 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016.02.02 12:53:19 | 000,000,980 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016.02.02 12:53:19 | 000,000,976 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016.02.02 12:45:23 | 000,001,234 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2016.02.02 12:45:23 | 000,001,222 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2016.02.01 14:28:13 | 000,012,467 | ---- | C] () -- C:\Users\Uživatel\Desktop\chalifát.PNG
[2016.01.30 15:58:26 | 000,000,016 | ---- | C] () -- C:\ProgramData\mntemp
[2016.01.30 15:58:22 | 000,000,900 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk
[2016.01.30 15:58:22 | 000,000,888 | ---- | C] () -- C:\Users\Public\Desktop\Total Uninstall 6.lnk
[2016.01.30 15:49:15 | 000,138,206 | ---- | C] () -- C:\Users\Uživatel\Desktop\Výstřižek1.PNG
[2016.01.29 18:26:58 | 000,088,115 | ---- | C] () -- C:\Users\Uživatel\Desktop\Výstřižek.PNG
[2016.01.28 17:12:32 | 000,165,376 | ---- | C] () -- C:\Users\Uživatel\Desktop\SystemLook_x64_2.exe
[2016.01.28 12:56:08 | 000,001,261 | ---- | C] () -- C:\Users\Uživatel\Desktop\CrystalDiskInfo.lnk
[2016.01.28 12:53:23 | 000,000,512 | ---- | C] () -- C:\Users\Uživatel\Desktop\MBR.dat
[2016.01.27 19:50:04 | 000,000,008 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2016.01.27 19:42:33 | 000,024,064 | ---- | C] () -- C:\WINDOWS\zoek-delete.exe
[2016.01.27 18:04:12 | 000,028,272 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\TrueSight.sys
[2016.01.26 07:02:48 | 000,000,262 | ---- | C] () -- C:\WINDOWS\System\vsfg
[2016.01.25 19:49:56 | 000,001,205 | ---- | C] () -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Degoo .lnk
[2016.01.25 19:49:56 | 000,001,183 | ---- | C] () -- C:\Users\Uživatel\Desktop\Degoo.lnk
[2016.01.25 13:49:31 | 524,288,000 | ---- | C] () -- C:\REMOVE_THIS_FILE.livecd.swap
[2016.01.22 17:59:22 | 000,000,960 | ---- | C] () -- C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
[2016.01.22 17:59:22 | 000,000,912 | ---- | C] () -- C:\Users\Uživatel\Desktop\Start Tor Browser.lnk
[2016.01.19 12:14:21 | 003,252,349 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\Cat.DB
[2016.01.16 00:03:40 | 000,000,001 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\360Hvm64.dat
[2016.01.15 19:39:47 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
[2016.01.15 16:38:21 | 837,642,740 | ---- | C] () -- C:\Users\Uživatel\Desktop\20141104_175517.mp4
[2016.01.10 12:08:27 | 000,012,504 | ---- | C] () -- C:\WINDOWS\SysNative\pwdspio.sys
[2016.01.10 12:02:23 | 003,067,392 | ---- | C] () -- C:\WINDOWS\SysNative\pwNative.exe
[2016.01.10 12:02:23 | 000,019,152 | ---- | C] () -- C:\WINDOWS\SysNative\pwdrvio.sys
[2016.01.09 20:07:11 | 000,320,512 | ---- | C] () -- C:\WINDOWS\SysWow64\w32mkde.exe
[2016.01.09 20:07:11 | 000,110,080 | ---- | C] () -- C:\WINDOWS\SysWow64\w32mkrc.dll
[2016.01.09 20:07:11 | 000,003,146 | ---- | C] () -- C:\WINDOWS\SysWow64\vsort.com
[2016.01.09 20:07:09 | 000,201,728 | ---- | C] () -- C:\WINDOWS\SysWow64\VSVIEW3.OCX
[2016.01.06 08:41:42 | 000,001,198 | ---- | C] () -- C:\Users\Uživatel\Desktop\MyHeritage Family Tree Builder.lnk
[2016.01.06 08:41:40 | 000,454,656 | ---- | C] () -- C:\WINDOWS\SysWow64\PaintX.dll
[2016.01.05 11:41:46 | 000,376,275 | ---- | C] () -- C:\Users\Uživatel\Desktop\IMG_20160105_0001.jpg
[2016.01.05 11:20:38 | 000,376,275 | ---- | C] () -- C:\Users\Uživatel\Documents\IMG_20160105_0001.jpg
[2015.12.26 10:35:57 | 000,674,816 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidcore.dll
[2015.12.26 10:35:57 | 000,282,112 | ---- | C] () -- C:\WINDOWS\SysWow64\xvidvfw.dll
[2015.11.24 00:34:06 | 000,000,207 | ---- | C] () -- C:\WINDOWS\tweaking.com-regbackup-UZIVATEL_PC-Windows-10-Pro-(64-bit).dat
[2015.11.22 00:36:10 | 000,000,082 | ---- | C] () -- C:\WINDOWS\SysWow64\winsevr.dat
[2015.11.13 15:33:44 | 001,823,232 | ---- | C] () -- C:\WINDOWS\SysWow64\InputService.dll
[2015.11.13 15:31:49 | 001,766,952 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2015.11.13 15:29:09 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2015.11.13 10:54:53 | 001,940,726 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2015.11.12 17:46:23 | 000,002,800 | ---- | C] () -- C:\WINDOWS\SysWow64\LavasoftTcpServiceOff.ini
[2015.09.08 07:45:37 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lagarith.dll
[2015.09.08 07:45:32 | 000,112,128 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_vfw.dll
[2015.07.10 13:20:52 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015.07.10 12:04:39 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015.07.10 12:04:38 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015.07.10 12:00:35 | 000,161,632 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015.07.10 12:00:33 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015.07.10 12:00:32 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015.07.10 12:00:31 | 000,156,672 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2015.07.10 12:00:30 | 000,028,672 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015.07.10 12:00:29 | 000,081,408 | ---- | C] () -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2015.07.10 12:00:29 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2015.07.10 12:00:29 | 000,053,760 | ---- | C] () -- C:\WINDOWS\SysWow64\WpKbdLayout.dll
[2015.07.10 12:00:29 | 000,022,016 | ---- | C] () -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2015.07.10 12:00:28 | 000,270,848 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015.07.10 12:00:27 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015.07.10 12:00:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015.07.10 12:00:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015.07.10 12:00:24 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015.07.10 11:59:51 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015.03.29 10:21:49 | 000,001,044 | ---- | C] () -- C:\Users\Uživatel\AppData\Roaming\vso_ts_preview.xml
[2015.03.29 10:19:53 | 000,007,859 | ---- | C] () -- C:\Users\Uživatel\AppData\Roaming\pcouffin.cat
[2015.03.29 10:19:53 | 000,001,167 | ---- | C] () -- C:\Users\Uživatel\AppData\Roaming\pcouffin.inf
[2014.12.15 12:36:20 | 000,153,088 | ---- | C] () -- C:\WINDOWS\SysWow64\UNWISE.EXE
[2014.09.23 16:54:07 | 000,001,328 | ---- | C] () -- C:\Users\Uživatel\AppData\Local\MRDownloader(1).nast
[2014.06.22 19:59:31 | 000,001,272 | ---- | C] () -- C:\Users\Uživatel\AppData\Local\MRDownloader.nast
[2014.02.09 04:10:12 | 000,218,200 | ---- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
[2014.01.14 08:39:52 | 000,001,456 | ---- | C] () -- C:\Users\Uživatel\AppData\Local\SRDownloader.nast
[2013.11.27 19:15:02 | 000,003,725 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013.11.26 20:21:00 | 000,000,001 | ---- | C] () -- C:\Users\Uživatel\AppData\Local\llftool.4.40.agreement

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2015.09.17 07:49:11 | 006,487,248 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2015.09.17 07:28:40 | 005,120,056 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015.07.10 11:59:53 | 000,995,328 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015.07.10 12:00:23 | 000,754,688 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015.07.10 11:59:55 | 000,516,096 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.07.26 05:59:36 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Abelssoft
[2015.07.19 23:26:25 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Acronis
[2016.01.10 14:12:54 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\AIMP3
[2015.03.13 17:52:48 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Bricsys
[2015.07.14 19:02:53 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\BuckIT
[2015.07.10 11:37:56 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Canon
[2016.02.03 11:49:30 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\DMCache
[2016.02.02 08:41:47 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Dropbox
[2015.12.08 16:18:17 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\DRPSu
[2013.12.10 12:55:48 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\duplicate-file-finder.com
[2014.07.22 18:35:56 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\DVDVideoSoft
[2013.12.10 12:44:55 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\EFSoftware
[2013.11.27 12:07:15 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Epson
[2014.11.30 18:03:46 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Exec
[2015.03.25 19:26:53 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\ffDiaporama
[2014.01.03 08:38:09 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\FlowStone
[2014.12.15 21:04:03 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Garmin
[2016.01.30 16:18:29 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Geek Uninstaller
[2015.07.31 13:21:06 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\GHISLER
[2014.01.04 11:02:37 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Hardcore
[2016.01.16 22:39:28 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Homepager
[2016.01.28 17:12:50 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\IDM
[2014.01.03 08:38:57 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Image-Line
[2015.11.01 13:34:11 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\IObit
[2014.01.03 08:56:20 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\IsolatedStorage
[2013.11.27 19:59:15 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Leadertech
[2013.12.12 12:55:34 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\MAGIX
[2014.09.23 17:10:27 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\MaskMyIP
[2015.07.14 19:02:53 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Mp3tag
[2015.11.16 08:35:24 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\MPC-HC
[2016.01.06 08:55:15 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\MyHeritage
[2013.11.22 12:01:46 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\NCH Swift Sound
[2013.12.20 13:13:00 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\NetMedia Providers
[2016.01.16 22:52:13 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Notepad++
[2016.02.02 13:13:52 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Opera Software
[2015.02.21 16:18:08 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Oracle
[2013.12.16 10:33:54 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\PhotoFiltre 7
[2013.12.20 13:13:00 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Publish Providers
[2014.12.03 19:11:23 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\R-TT
[2014.11.09 19:51:12 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Samsung
[2015.07.14 19:02:53 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Sony
[2015.01.20 18:30:13 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Subversion
[2016.01.06 08:41:39 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\The Complete Genealogy Reporter - FTB
[2013.11.30 14:15:50 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Thunderbird
[2016.02.03 11:52:59 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\uTorrent
[2013.11.25 20:11:58 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\VOS
[2015.11.13 18:16:34 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Vso
[2014.12.09 16:40:23 | 000,000,000 | ---D | M] -- C:\Users\Uživatel\AppData\Roaming\Zoner

========== Purity Check ==========

========== Files - Unicode (All) ==========
[2016.01.14 12:49:43 | 000,002,106 | ---- | C] ()(C:\ProgramData\Microsoft\Windows\Start Menu\Programs\???r?.lnk) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ореrа.lnk

< End of report >

doktorcz · Příspěvekod **doktorcz** » 03 úno 2016 12:14

OTL Extras logfile created on: 3.2.2016 11:53:06 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uživatel\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10240.16384)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 4,00 Gb Available Physical Memory | 66,63% Memory free
7,25 Gb Paging File | 5,26 Gb Available in Paging File | 72,52% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,35 Gb Total Space | 52,42 Gb Free Space | 22,56% Space Free | Partition Type: NTFS
Drive J: | 931,48 Gb Total Space | 329,93 Gb Free Space | 35,42% Space Free | Partition Type: NTFS
Drive K: | 14,46 Gb Total Space | 2,23 Gb Free Space | 15,39% Space Free | Partition Type: FAT32

Computer Name: UZIVATEL_PC | User Name: Uživatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.cpl[@ = cplfile] -- C:\WINDOWS\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\WINDOWS\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.inf[@ = inffile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\WINDOWS\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.inf [@ = inffile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\WINDOWS\SysWow64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\WINDOWS\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" {1E460BD7-F1C3-4B2E-88BF-4E770A288AF5}%U{1E460BD7-F1C3-4B2E-88BF-4E770A288AF5} %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc64.enqueue] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc64.play] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe" "%1" (MPC-HC Team)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" {1E460BD7-F1C3-4B2E-88BF-4E770A288AF5}%U{1E460BD7-F1C3-4B2E-88BF-4E770A288AF5} %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc64.enqueue] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc64.play] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe" "%1" (MPC-HC Team)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = F4 EE 1F 3F FD 1D D1 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== System Restore Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00D8ACE0-72AD-419B-8E03-BF3CB2484A77}" = lport=445 | protocol=6 | dir=in | app=system |
"{0F3A8E69-A418-4D50-8D48-4E39488CF665}" = lport=10245 | protocol=6 | dir=in | app=system |
"{11284198-6104-4694-A2BD-08E91E7E4EF6}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{15F13E27-D91D-4B80-882D-7CB7E63AF767}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{1FC7166C-FAD6-460C-9F99-B415105FAE2D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{23E5300F-0F82-4C2F-B4F4-DF5FF480ED15}" = lport=1900 | protocol=17 | dir=in | name=microsoft upnp-port (udp) |
"{25FDC09D-88A7-4D20-BCE6-4CDEF2760037}" = lport=2869 | protocol=6 | dir=in | name=microsoft upnp-port (tcp) |
"{299DE96C-1454-4322-AEAC-2CCA58816CFC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2B3179C0-4536-4731-8B87-D74B010D26DD}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{3007AD71-2A93-4564-AF19-681127CE6E79}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{32367E03-07BA-4FF1-86F0-3C116C9A3182}" = lport=3389 | protocol=17 | dir=in | svc=termservice | app=%systemroot%\system32\svchost.exe |
"{3733C92E-EC05-4014-B40F-9E9C9CEC76FE}" = lport=48113 | protocol=6 | dir=in | name=maconfig_tcp |
"{3EDDC124-704F-4D96-99B2-6F23DC81253E}" = rport=2869 | protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6FE2D8C0-D3B5-4866-9F4F-61D2D2092A7F}" = lport=10244 | protocol=6 | dir=in | app=system |
"{70152897-A89C-442A-B791-9AAFCEA8BAF9}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{740197B5-9B91-43DC-9448-5F2FAA99E4ED}" = lport=48113 | protocol=17 | dir=in | name=maconfig_udp |
"{74BA4802-F1F5-4CF4-BDBD-45A890D1F82A}" = lport=3390 | protocol=6 | dir=in | svc=termservice | app=%systemroot%\system32\svchost.exe |
"{784F324B-BBFD-41D2-A679-343DB61A2342}" = lport=2869 | protocol=6 | dir=in | app=system |
"{7F7E666A-7E71-41FD-92C8-66F815B191B1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{83B001E4-AB7F-4C7C-9E79-F0CDD67F1DB1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8C4C9F01-E6ED-4EE4-A861-ED9D6069E637}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{9AAD30E4-5267-4C1D-8D89-1432171F1903}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9AEB5378-FA7C-40AA-92E1-40EFD77EB825}" = lport=0 | protocol=6 | dir=in | name=magix upnp media server |
"{A4861962-3AE7-4ABE-89CF-AF1FC223CFF4}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\lsass.exe |
"{AF5D7338-F624-4288-A96D-277A8749E725}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BE3E35C9-FB26-4D14-B3B3-5BD477DE0F57}" = lport=2869 | protocol=6 | dir=in | app=system |
"{D78F4F28-3023-43F1-A384-258B5AB57F88}" = lport=2869 | protocol=6 | dir=in | app=system |
"{DC5FA52D-2EA4-4A63-8CD3-CE3CF4B3D717}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{E569C32C-1738-4284-A4ED-2FCBD0665CDA}" = lport=3389 | protocol=6 | dir=in | svc=termservice | app=%systemroot%\system32\svchost.exe |
"{E9A6E2BE-945C-48E5-AA6D-5BD2D06CD0D3}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB10F0D8-3B64-44DC-A6F2-7C62DBEFDD46}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F02C2CCD-EA40-4B39-9EEF-E6C093C801A5}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F1C2C420-011D-42B1-B693-3D219B92DECE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F72A27FB-4D8C-4CFA-B5C5-64CCC6F0CF9A}" = rport=2869 | protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F87DA3AB-0E2C-4930-A77D-B136D49B720C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01785469-53F9-48CC-8D7B-9339201A08C5}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{030AF0F0-D615-4613-AD23-8E651A56DCD6}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{03545CA2-9225-4A30-850A-5FF2341209BB}" = dir=in | name=microsoft solitaire collection |
"{03FC087F-82BA-412B-8B45-9BBA31AA08F3}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{05831216-9B7D-475D-866C-0F5648A476A8}" = dir=out | name=@{microsoft.windows.photos_16.122.14020.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{073935B1-6AD1-4C09-B3B4-2EC9A97B3938}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{077B2343-5F67-43E2-B12E-8A49A0E09AFC}" = dir=out | name=@{d5ea27b7.duolingo-learnlanguagesforfree_2016.120.1.0_x64__yx6k7tf7xvsea?ms-resource://d5ea27b7.duolingo-learnlanguagesforfree/resources/appname} |
"{09F74F87-C861-44B7-9742-8D0797C9E62E}" = dir=out | name=@{microsoft.3dbuilder_10.9.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{0BA1D169-BED8-4049-9560-1D95E04ECDE9}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0E18A226-1BF9-478B-A2C1-C2A80A5A7402}" = dir=out | name=cbs news |
"{0E42DE59-9247-4AD0-9020-211DDC8A2510}" = dir=out | name=@{microsoft.zunevideo_3.6.11821.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{0ED7ACDC-688C-478D-A655-7263AFD2D281}" = dir=out | name=microsoft solitaire collection |
"{141E186A-1727-45F1-99CC-A941A7DF5F5E}" = dir=in | app=c:\program files\zoner\photo studio 17\program32\mediaserver.exe |
"{168B36AA-3D0A-4AA0-A6A4-F6329D1C5BDD}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{1714FA0E-99A2-420F-8951-468DF71B83B4}" = dir=out | name=@{microsoft.bingweather_4.7.104.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{177A57D1-30CB-4D38-9705-FC437BEB32F0}" = dir=in | name=@{microsoft.bingweather_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{17A2693D-1EF7-4FEC-907B-0FDCB0F37687}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{19385616-99AC-4C64-99D0-D8E4107DCFB5}" = dir=out | name=@{microsoft.bingnews_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{19A5191F-7F74-415C-8BFD-64CBB9564764}" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{1C355BBB-3026-47E9-8918-1AF8AAD0DCA0}" = dir=out | name=@{microsoft.bingweather_4.4.183.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{1CB8E7F4-5736-4A09-9DD3-1655C168EEC1}" = dir=out | name=pickit photo finder |
"{1D7A6B11-8258-415E-9E8F-D3C55C56441D}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{1DE18A71-438F-41BA-8035-C1B5CF50FF5C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{1E51CBBD-2B66-4660-9268-245CFC87820C}" = protocol=17 | dir=in | app=c:\users\uživatel\downloads\inst.exe |
"{1F02C70E-0537-4F22-9EA4-FE1970CE0956}" = dir=out | name=canon inkjet print utility |
"{1F441B05-94A6-4161-B5A7-51F1D88EBB0B}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{1F7F4B99-9578-44FB-81FF-198241BDF72C}" = dir=out | name=@{microsoft.windowsmaps_4.1506.50715.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{23880AE0-90BC-4A87-AF80-7C10AD44140C}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{246D70D8-7A0D-40DA-A200-9C4CE3C45B3E}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{2A5A62FB-5875-44DE-862E-E75F39C42594}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{2B0C056D-C742-4ED9-9DC6-37566255295B}" = dir=in | name=@{microsoft.windows.photos_15.1026.13580.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{2FD7DD97-1DD7-43B8-921F-9430806DA9BF}" = dir=out | name=@{d5ea27b7.duolingo-learnlanguagesforfree_2015.1105.1.0_x64__yx6k7tf7xvsea?ms-resource://d5ea27b7.duolingo-learnlanguagesforfree/resources/appname} |
"{3071A663-F44E-4C86-9406-CAF4F235E672}" = dir=in | name=@{microsoft.bingnews_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{32570C47-FC43-4CE5-8252-4711A0C374C9}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{329F7ED4-9D0B-499A-A314-7FAD6FF7FA6E}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{32C06588-4304-473B-AFEC-ACF5456EF974}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{32C5DA6B-1D6F-4180-B061-9FC172558990}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3326B8B9-36D2-4489-815A-2EA125D6363D}" = dir=out | name=@{microsoft.windowsmaps_4.1601.10150.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{33D15020-7B91-45BB-9798-CC53C511540C}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{33D17539-324B-4AE6-AEAA-20D99D01635E}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{351B77C4-511D-44A3-864F-6B973B63F799}" = protocol=17 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe |
"{358BB2E9-7999-4119-8D1C-7EC8F13CD685}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{361AF3A2-C3DA-4587-8523-3122389E6B77}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\magix shared\upnpservice\upnpservice.exe |
"{36D5F693-C285-44DD-B40C-5715A3488F7B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{38F1056C-C95D-4574-933F-B53FD444AAA9}" = dir=out | name=xbox |
"{3C471860-CD1C-41AA-ACBA-A83AE1AD52AB}" = dir=in | name=microsoft solitaire collection |
"{3ECA04DC-370A-4412-A644-E70D3220AC6F}" = dir=in | name=canon inkjet print utility |
"{3F87448F-30E5-4630-B753-141E70388E7E}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{4026B910-E419-4CAD-A7B9-126BE45B9BD7}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{40E7C847-6194-4D81-9427-DE19C4AD7BB7}" = dir=out | name=@{microsoft.bingweather_4.8.239.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{412E77C0-3B8B-4F52-86C5-2F810C26C6D4}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{4266EBD2-30FB-4B53-B255-23F83DEFEBC1}" = dir=in | name=onenote |
"{42ACC9E1-382B-490C-9C26-A62CE2A4FA2E}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{4365AFBC-05F1-4852-BEA6-0C113A12C0AD}" = dir=in | name=@{microsoft.windowsstore_2015.21.25.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{43A23107-875A-4472-BC6C-46760D64A17D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{476B148E-11B5-44AF-A6B8-763F93604FA4}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{48BE787E-E229-4591-A341-2AE6DB1E2EA3}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{4A8F5BCA-C220-44E6-A24D-53BA9447A47D}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6568.16731.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{4AB3F355-3041-45EB-A30B-7D6DAF49D2D4}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{4D9D83A8-3D27-40BB-9E55-EF98BB553C75}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{4DFBE4A0-86BB-4AC8-B815-4AE602DB204E}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{4E5F0DC8-D2EF-4237-B966-EDF7F1509A47}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{4F807529-353F-4A0C-92EA-9E382EC5FE3D}" = dir=out | name=one calendar |
"{5000CBCB-683F-4770-96E5-CDA9A34936C1}" = dir=in | app=c:\program files (x86)\dropbox\client\dropbox.exe |
"{50641C89-999D-46DB-A120-ABF795F64BDB}" = protocol=6 | dir=in | app=c:\users\uživatel\appdata\roaming\utorrent\utorrent.exe |
"{50D322EE-4EDE-4D83-A02A-C1BDC37B2285}" = dir=in | name=@{microsoft.windowsstore_2015.7.22.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{51CF74B8-6C0E-48CB-8082-ECDE6524A668}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{5405AE43-F884-4016-BBA9-5BC9E17DF332}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{59DFF7C8-6CBC-4516-BD55-82AB490DC8F7}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{5AC689A3-D727-4662-B6BB-5C1E785EA298}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{5AFD4E9F-1A65-4176-95BE-406890669F5A}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{5B99F6EC-A00E-4093-A7E5-090D6216B85A}" = dir=out | name=onenote |
"{5C1B4456-B15F-4C35-BB17-9670BA2C386F}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{5C35A383-D20E-4F2C-9962-195F2608FAF6}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{5CADDE8E-8806-4B21-AD6C-025740AE005C}" = dir=out | name=@{microsoft.people_1.10241.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{600F5F92-9F28-4F20-9157-063A2C54DB5F}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{609F3F55-00A9-4459-AC65-D75A06FD20AF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{613E19D1-E216-4EFE-A8F6-091A4BAEBBD7}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{6253EFD8-B7E4-4428-92DF-AF42E2F64B43}" = protocol=17 | dir=in | app=c:\users\uživatel\appdata\roaming\utorrent\utorrent.exe |
"{627B9F2A-2C0D-47D4-BF19-547393A81AD6}" = protocol=6 | dir=in | app=c:\program files (x86)\nero\km\kwikmedia.exe |
"{632D68F4-CD88-4096-9A2E-56FAE10CACC2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6427687F-3501-4325-8B7F-B266C3803D25}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{64D3B8FD-7551-4A85-B218-114297A2EA25}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{654ACEF1-8808-41C1-A109-A1B1E403C088}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{6625CC00-051F-44FF-AF5C-ED6594858554}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{69BE0989-EB44-42DC-9A06-200CCD5E26E3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6BB3D2A2-70D3-4152-BCE8-82427A197889}" = dir=in | name=onenote |
"{71443307-3560-4AA6-B7E6-3D7B62A04AAB}" = dir=out | name=@{microsoft.getstarted_2.2.7.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{71E3AA0A-362D-4ACD-8431-365FD2A1927A}" = dir=out | name=@{microsoft.microsoftofficehub_17.6314.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{74468895-4E87-4C6F-92F3-41205B28F88C}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{771077CC-7D2B-45A8-B8B2-1CB9A346F2AA}" = protocol=6 | dir=in | app=%systemroot%\system32\rdpsa.exe |
"{77302E47-BC78-4024-9710-83B83F58CFE6}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{77F4AB30-9AF8-4E50-BA02-722C7F37E782}" = dir=in | name=@{microsoft.microsoftofficehub_17.6020.23801.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{79E6E460-FA0C-42D3-9BDB-E069DBF9992D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{7A82356F-8371-45A8-8AC7-5401EED685AE}" = dir=in | name=microsoft solitaire collection |
"{7A82A9AF-A66A-475C-A4F7-1A6D3DF0E28C}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{7B98CE9B-1F97-4DBA-A863-A3383E1F99B3}" = dir=in | name=@{microsoft.microsoftofficehub_17.6314.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{7BF28326-9358-4CE9-A45A-3B30A07B5437}" = dir=in | name=@{microsoft.bingnews_4.7.104.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{7D6ECC5C-9E27-4737-B190-928A8E68E880}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{7E6F72B0-52D2-4FCD-A151-3833B8C5D0BF}" = dir=out | name=@{microsoft.windowsstore_2015.7.22.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{7E96CD7E-85B7-4DBB-AED2-649AFBF7EDD5}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{7F9870C3-6C11-4BB4-A7C2-71FFD78F00F6}" = protocol=6 | dir=in | app=c:\program files (x86)\samsung\intelli-studio\istudio.exe |
"{7FB8970B-D972-405F-BEF9-2A4FF981A4A0}" = dir=out | name=prima play |
"{805F72CC-ED3D-49BE-9C71-169F0B3B49D9}" = dir=in | name=@{microsoft.bingfinance_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{84646A46-77AC-451C-8698-449DBCD491AD}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{84B98275-A918-4A3F-AD22-3E29D30C891B}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{85265AE7-1784-4E37-A48F-72FB66715CE5}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{855D728F-B7C0-44B6-8B9F-255340FEE28E}" = protocol=6 | dir=in | app=c:\users\uživatel\downloads\inst.exe |
"{8673F34A-2E40-4A4E-8BBE-FBDB64E82E67}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{86E7CF84-9FB7-4330-BE02-4F71B1F8D4F5}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6020.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{87E9C3F9-CAB9-4F0B-A315-E20DB8CE81E3}" = dir=out | name=@{microsoft.zunevideo_3.6.15081.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{88B049DE-2EAA-4588-9585-D779305D4370}" = dir=out | name=microsoft solitaire collection |
"{8CCCAC51-5B37-4477-B948-AA7D620697B0}" = dir=in | name=@{microsoft.bingweather_4.4.183.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{8CED6E17-BDEF-497E-8A9A-DFAEB88B9024}" = dir=out | name=flipboard |
"{8D2FBE90-717F-408C-879F-72BDB9280C7A}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{8EF6D1F5-686D-44E4-AFC7-1A9B995048DA}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{8F789513-D524-45E2-96C5-CF1A3AB38C8A}" = dir=out | name=onenote |
"{8FB86DAE-1734-46C4-A870-50C8040D50D1}" = dir=in | name=@{microsoft.windows.photos_15.721.12350.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{932F97F8-91E0-4C46-AA27-1494E0A08024}" = dir=out | name=@{microsoft.3dbuilder_10.1.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{936D24EC-B2E4-42B8-BC40-2DDD7A368039}" = dir=out | name=@{microsoft.bingfinance_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{93AD5F6A-DB6E-49F2-85D4-EC41535BA298}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{946E725E-9777-4967-A388-55D862D94A6F}" = dir=out | name=@{microsoft.zunevideo_3.6.16941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{950DDEEC-FE60-48A4-960F-F29E244DA4F7}" = dir=out | name=@{microsoft.windowsphone_10.1509.17010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{9535610B-0F17-41DB-BB84-53FBE4707890}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6020.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{95AEB8CC-4079-4D9A-8975-2B57DA09C530}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{97273B19-A9AD-4B86-878D-A6BFE8153D40}" = protocol=6 | dir=out | app=system |
"{97DEF0A7-8276-4982-AE3E-D3AF76DDBDEF}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{9850CF1F-BFC1-4B1B-A079-F147383E2E16}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{998C1E5F-FDB3-448C-9E3A-86EEF7FE8F64}" = dir=out | name=@{microsoft.windowsphone_10.1511.18010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{9A5F6563-CC83-4923-9DDF-09B4CC94FED5}" = dir=out | name=@{microsoft.zunemusic_3.6.15131.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{9B35AF4B-3843-45AB-A4C8-D08438E1F2DA}" = dir=out | name=@{microsoft.getstarted_2.5.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{9D0B2DD9-98DE-42CC-8198-A4AA5A2B245C}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{9E89E475-3081-4DB7-A2B7-6F0DA4B5646D}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6410.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{A007DB34-F393-49BF-ADAD-112A38347D73}" = dir=out | name=xbox |
"{A07686F9-6CE3-4281-8B37-1FDF1C690B6F}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{A1D01BE1-4055-49A1-A375-D0855511B4B5}" = dir=out | name=microsoft solitaire collection |
"{A234A324-2412-4B18-BE7E-0851E625992E}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{A486C28F-C69E-4B9E-999C-32AE4D6EBD05}" = dir=out | name=@{microsoft.microsoftofficehub_17.6020.23801.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{A4D76943-5BBA-4A4A-A6A6-1A607738E709}" = dir=out | name=geophoto |
"{A5DC4348-490B-4374-8B30-3E60253034B8}" = dir=out | name=pichit photo finder |
"{A8D3293A-89B4-4CA1-98EC-4795FE11B5BB}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{B0D0DF9F-648B-41A1-A0C7-F073923E6F65}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{B134FE25-753A-42A3-B83B-3144FEBE170F}" = dir=out | name=prima play |
"{B16C3BFD-E22E-4052-9598-7C7781768F55}" = dir=out | name=facebook |
"{B776DDE2-1983-408D-B7FA-51037255D1CB}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{B9589FD7-DE99-40A3-ADDE-5E57D63667D1}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{BA92895D-119F-458F-9316-204301375F25}" = dir=in | name=@{microsoft.windowsstore_2015.25.24.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{BB5B096F-486F-4166-9894-E18A31C49C93}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6410.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{BB5C4597-93B2-473E-9180-55643E779155}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{BB68F288-62D9-4494-A5C4-1881B7CD2960}" = dir=out | name=@{microsoft.windows.photos_15.721.12350.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{BBD719D8-AA29-40CA-91D4-746486C035D0}" = dir=out | name=@{microsoft.bingnews_4.7.104.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{BD91D4B8-5EAE-479F-B1FC-96C4A3B369D3}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{BE408DF5-2D23-4E0F-A52C-DD261ADE303A}" = dir=out | name=onenote |
"{C084628D-D7F6-4149-BE4B-F60250DCB51D}" = dir=in | name=@{microsoft.bingweather_4.7.104.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{C1A88593-0389-4FAD-B053-6F4D43408AB5}" = dir=out | name=@{microsoft.people_10.0.3030.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{C1DDBE0E-6349-4300-9FCD-C61F5CA2178E}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{C4D510A5-6A07-42BE-8316-A59A0184C583}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{C65A93E3-A67A-49FA-B41A-9B62A8D5294C}" = dir=in | name=@{microsoft.bingsports_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{C6C9B6B5-8EC7-47B4-8378-B5A9AB26DCDD}" = dir=out | name=geophoto |
"{C8583934-9A9A-4BED-BEA9-0EC3ADAA6E66}" = dir=out | name=windowsdvdplayer |
"{CBB77542-20ED-4BE4-8EDF-366560CF9E4B}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{CD0B1E44-DD06-48FA-A8A1-C81E3C16597B}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{CD1A2A15-8856-4697-A150-D9871889C16D}" = dir=out | name=@{microsoft.bingsports_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{CE54BE89-DDE2-4296-B34C-2ACA7CC4E3E9}" = dir=out | name=windows_ie_ac_001 |
"{D3237F4C-1938-42EC-A30C-D97DBA36838B}" = dir=in | name=onenote |
"{D3D07524-2D74-4FC4-A7E8-786F291BD704}" = dir=in | name=xbox |
"{D4F97FD7-D278-468F-BC81-FBB16B7F32FA}" = dir=out | name=@{microsoft.windowsphone_10.1507.17010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{D54B2F47-9822-4D76-8F14-F21D235B7167}" = dir=out | name=@{microsoft.windowsstore_2015.25.24.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{DB6176A1-5E59-4FB2-9FD6-D53D379AB509}" = dir=out | name=@{microsoft.windows.photos_15.1026.13580.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{DE095209-6CBA-49C2-9AFF-430BE1B0C3EF}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{DF6D8815-E883-4903-8AF9-91D56F17F878}" = dir=out | name=windowsdvdplayer |
"{E1B8E23A-716E-45CE-8067-7DB7E3A32E63}" = dir=out | name=@{microsoft.windowsstore_2015.21.25.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{E1BC6CF9-C3C5-43A3-8888-E9B8BFC6CF59}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{E489CCA3-5747-40A6-BE97-6F476A0DD7DB}" = protocol=17 | dir=in | app=c:\program files (x86)\samsung\intelli-studio\istudio.exe |
"{E92334C8-330F-4499-B3C5-420C49BE615B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EB8AD8C4-C9CB-4A06-AE8A-81DDFE899342}" = dir=in | name=xbox |
"{F32308ED-0CD7-4466-B8F4-A9F0A56949C4}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{F3E95734-F3C9-4FC8-9249-C721C3FADE54}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{F43BEADB-D288-412E-8794-3037895CFA82}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe |
"{F4BCE670-93F9-4259-AF3A-263622DF8BC5}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{F58A5239-0A27-4C76-904A-6EBCD566082B}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{F5B64728-CC80-4E83-B9CB-DCB39FF2DB30}" = dir=out | name=@{microsoft.people_10.0.3450.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{F5B9847F-8722-444E-AF0A-98E63D12D9B5}" = dir=in | name=@{microsoft.windows.photos_16.122.14020.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{F6202490-FCD1-4887-BE3B-C2069D93760A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F930E9FD-3578-4350-93ED-6A736753C989}" = dir=out | name=@{microsoft.windowsmaps_4.1510.3000.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{F969A65F-A088-4E63-B902-1037A298CDB2}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{FA7B38FC-6BA0-4000-A214-D516919E10B4}" = dir=out | name=@{microsoft.zunemusic_3.6.11821.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{FB26D923-691D-44AF-BDF0-CB07D3196515}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6568.16731.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{FC5B9177-77F7-40AC-A75C-A39CE284B4E4}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{FD717CEA-5C58-4D48-B965-C238517BB041}" = dir=out | name=facebook |
"{FDB33D0D-B8B7-4734-BDA3-2D05919D55B1}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{FEF1972B-48BC-46BB-AEA3-D65C23BDB61E}" = dir=in | name=@{microsoft.zunevideo_3.6.16941.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"TCP Query User{1939CBAA-7A0C-427E-A100-7BC6A9D13B41}C:\users\uživatel\appdata\local\degoo\degoo.exe" = protocol=6 | dir=in | app=c:\users\uživatel\appdata\local\degoo\degoo.exe |
"TCP Query User{82F18E7E-DE0F-4F15-BE08-38B5E96FDE7E}C:\program files (x86)\microsoft office\office12\groove.exe" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"TCP Query User{B517CFFC-2946-423E-ABA1-79F54ECC2D23}C:\users\uživatel\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\uživatel\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{B8AE5A72-13F5-4294-821B-0BE385C66378}C:\program files (x86)\samsung\intelli-studio\istudio.exe" = protocol=6 | dir=in | app=c:\program files (x86)\samsung\intelli-studio\istudio.exe |
"TCP Query User{C4ECEDC9-E886-482F-AB94-2218C972C13D}C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe" = protocol=6 | dir=in | app=c:\program files (x86)\nero\nero 12\nero backitup\backitup.exe |
"UDP Query User{5C0E1A4B-7CF2-4B7E-BC49-3AD6AAA305AC}C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe" = protocol=17 | dir=in | app=c:\program files (x86)\nero\nero 12\nero backitup\backitup.exe |
"UDP Query User{5D466D55-A5F9-4C90-B15C-611B8A92E70A}C:\program files (x86)\microsoft office\office12\groove.exe" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"UDP Query User{C4AF3A01-F72D-4EAA-BEEB-D1371C46BD02}C:\program files (x86)\samsung\intelli-studio\istudio.exe" = protocol=17 | dir=in | app=c:\program files (x86)\samsung\intelli-studio\istudio.exe |
"UDP Query User{FE7DC0C8-1DD2-44DD-BD7F-E059429BB3E8}C:\users\uživatel\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\uživatel\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{FF1E98C1-3013-41C3-81DE-D841E2709F06}C:\users\uživatel\appdata\local\degoo\degoo.exe" = protocol=17 | dir=in | app=c:\users\uživatel\appdata\local\degoo\degoo.exe |

doktorcz · Příspěvekod **doktorcz** » 03 úno 2016 12:14

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2900_series" = Canon MG2900 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{25E80DAA-FD87-DCE5-202C-CC02F6673002}" = Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64)
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86418066F0}" = Java 8 Update 66 (64-bit)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}" = CyberLink PhotoDirector 5
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 3.1.4
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A1B1B44-D41D-473A-AD26-3DAF1A596E8F}" = hubiC - x64
"{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 341.92
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 341.92
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 341.92
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 10.4.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{C48AF3CF-C632-3C19-838E-7DAB7283D46A}" = Microsoft .NET Framework 4.5.2 (CSY)
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = Samsung USB Driver for Mobile Phones
"{D63C55F0-849A-3CA7-B546-D0A19536D551}" = Microsoft .NET Framework 4.5.2 (FIN)
"{DDF9EA90-7ED0-37EA-B99C-BC790426C8FA}" = Microsoft .NET Framework 4.5.2 (HUN)
"CCleaner" = CCleaner
"MediaInfo" = MediaInfo 0.7.81
"Recuva" = Recuva
"sp6" = Logitech SetPoint 6.61
"Total Uninstall 6_is1" = Total Uninstall 6.16.0
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"ZonerPhotoStudio17_CZ_is1" = Zoner Photo Studio 17

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0071820F-09B0-4998-8320-F89629DCBC99}" = Nero BackItUp
"{052A1E34-A54B-458C-A4E3-24C3E054754A}" = Nero Kwik Media
"{05C6B128-1B40-4495-9CB9-090B368BFA0A}" = Nero Video Samples
"{0708FF30-78C0-47B0-81F0-C84604DC769C}" = Nero Express Help (CHM)
"{099218A5-A723-43DC-8DB5-6173656A1E94}" = Dropbox Update Helper
"{0B311221-05A5-4766-8D03-7A6446794156}" = Nero RescueAgent Help (CHM)
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{13f707f4-410d-4c85-95ea-a373458d9c98}" = hubiC
"{150D88F1-40AF-4678-A39D-BCE2332F34E5}" = Nero Abstract Themes
"{179324FF-7B16-4BA8-9836-055CAAEE4F08}" = SDFormatter
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1943C3BD-4462-4612-92C3-D36DD917C447}" = Nero Recode
"{1B6F5E51-575E-4693-BCA2-7543570D076D}" = Nero Kwik Themes Basic
"{1D30EA2E-5341-493E-8D71-0EED788B6CD9}" = Nero WaveEditor Help (CHM)
"{1F16820E-D0E7-4636-939E-45CBFEFB06E1}" = Nero Kwik Media Help (CHM)
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22856BC3-F893-4CBF-95F2-E1F63CD2B1AB}" = Nero Video Transitions 1
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{26A24AE4-039D-4CA4-87B4-2F83218066F0}" = Java 8 Update 66
"{27A8CEC3-F518-40F0-BA50-EDB47150BF33}" = Bontia Studio 5.0
"{2890E324-6F3B-4975-8B95-E7D6D80E0226}" = Nero Burning ROM Help (CHM)
"{29E2C1C6-D76A-41D3-980F-6E346AA9A6A8}" = Nero Cliparts
"{29F67D84-3A70-456E-806A-52301B02070B}" = Nero Effects Basic
"{2EE90F26-20B3-4423-81DE-E57E5D2E4FEF}" = Zoner GIF Animator 5
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3AAB08A3-F129-4BD5-B409-AE674F93759D}" = Prerequisite installer
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D25D881-7183-462F-95C8-990CA1944E0B}" = Nero PiP Effects 1
"{4E7AC009-5212-499F-942F-A5AA42AE359E}" = Nero 12 Content Pack
"{4fcf070a-daac-45e9-a8b0-6850941f7ed8}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{504D84ED-AE75-4F85-A68B-BB3D4CB3E169}" = Nero Holiday and Sports Themes
"{560FC78C-A4B2-461D-9B47-820C1EEF87B8}" = Nero 12
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5963F4B4-D138-47CD-ADEF-470E87E185BD}" = Nero Burning ROM
"{59D1195A-7E64-4120-BB37-F053D9FD45FB}" = ODF Add-in for Microsoft Office
"{5B79E730-D897-4B8F-A1AD-7BB2D1F22B96}" = Nero Blu-ray Player Help (CHM)
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.15
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{76335315-16A0-4DBB-B01C-5FDC6A5CB8A3}" = Nero WaveEditor
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23}" = Nero Football (Soccer) Themes
"{817750FA-EC6A-485D-9901-0683AE6FFDF1}" = Google Earth
"{828175FA-7307-4DBF-95AD-9CEE086B6F45}" = Welcome App (Start-up experience)
"{831D3D7B-169D-47F3-9117-D74934BF71BF}" = Nero WaveEditor
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588}" = Nero Retro Film Themes
"{83DD27C9-CDC2-489A-87FA-8622C1F8F8EC}" = Debugging Tools for Windows (x86)
"{83FCCFCD-46E3-43FB-A397-78BFD5A8980A}" = Nero Video
"{848A7C68-0ADC-4193-8A89-2CEA78E56A0C}" = Nero Express
"{86847081-B387-4F49-AED1-C9B0A090D66C}" = Nero Recode Help (CHM)
"{8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1}" = Nero Platinum Effects 12
"{8B8D9C33-4230-41EB-A303-791DBAB7DBCC}" = CloudBuckIt
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{955BF340-C379-4375-AA2F-F3BCB2A498AB}" = Nero Family and Events Themes
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}" = Nero Blu-ray Player
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-0804-1033-1959-001824161310}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Czech
"{ACE49D50-19CD-44A6-B192-46F985283B26}" = Nero PiP Effects Basic
"{AF2A8E58-DBC6-36D3-A145-7252029F6F48}" = Microsoft Report Viewer Redistributable 2008 SP1
"{B128179D-A5E1-43AC-9422-12A109ECD2A0}" = Nero Video Help (CHM)
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B953732D-B623-4E84-B369-CFFF7B1AE06F}" = Nero RescueAgent
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{BFA5441E-B7E6-46F5-A15D-1B74707AE93A}" = ACID Pro 7.0
"{C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A}" = Nero Image Samples
"{C994C746-C6D0-4EBA-B09E-DF7B18381B69}" = Nero ControlCenter Help (CHM)
"{CE675FBD-75C3-45F1-B6AF-8D250861D536}" = Nero Disc Menus 3
"{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}" = Nero Disc Menus Basic
"{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English
"{EA165371-61E8-4C63-AA30-798781DAE653}" = Degoo
"{EEBF1676-AF87-4266-93D8-0C14A34C4217}" = Nero Disc Menus 1
"{EF0D1292-8FC1-41BE-9740-DBC134F66415}" = Nero BackItUp Help (CHM)
"{EF61675D-9BBC-4EC7-B906-F13BE8D3BD20}" = Google Drive
"{F015C84A-A7FA-4DFC-A266-1754CC536056}" = Accusoft PICVideo Motion JPEG 4
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FE81E6B5-652B-40E7-B3B2-7171C6F297DA}" = Nero Disc Menus 2
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 15.10 beta
"Adobe Flash Player NPAPI" = Adobe Flash Player 20 NPAPI
"Adobe Flash Player PPAPI" = Adobe Flash Player 20 PPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.1
"Adobe Shockwave Player + Authorware Web Player" = Adobe Shockwave Player + Authorware Web Player
"AIDA64 Extreme_is1" = AIDA64 Extreme v4.00
"AIMP3" = AIMP3
"Amara - Flash Intro and Banner Builder" = Amara - Flash Intro and Banner Builder
"Amara - Flash Menu Builder" = Amara - Flash Menu Builder
"Amara - Flash News Ticker" = Amara - Flash News Ticker
"Amara - Flash Photo Animation Software" = Amara - Flash Photo Animation Software
"ASIO4ALL" = ASIO4ALL
"Canon MG2900 series On-screen Manual" = Canon MG2900 series On-screen Manual
"Canon My Image Garden" = Canon My Image Garden
"Canon My Image Garden Design Files" = Canon My Image Garden Design Files
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonQuickMenu" = Canon Quick Menu
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.7.0
"Deckadance" = Deckadance
"Dropbox" = Dropbox
"Drumaxx" = Drumaxx
"DX10" = DX10
"EaseUS Todo Backup_is1" = System GoBack Free
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Family Tree Builder" = MyHeritage Family Tree Builder
"File Repair_is1" = File Repair
"FL Studio 11" = FL Studio 11
"FlowStone" = FlowStone FL 3.0
"Freemake Video Converter_is1" = Freemake Video Converter verze 4.1.1
"GIF Animator" = Microsoft GIF Animator
"Google Chrome" = Google Chrome
"Hdd Speed Test Tool_is1" = Hdd Speed Test Tool v. 1.0.14 (RC 1)
"IL Autogun" = IL Autogun
"IL DrumSynth Live" = IL DrumSynth Live
"IL Gross Beat" = IL Gross Beat
"IL Harmless" = IL Harmless
"IL Harmor" = IL Harmor
"IL Juice Pack" = IL Juice Pack
"IL Ogun" = IL Ogun
"IL Shared Libraries" = IL Shared Libraries
"IL Slicex" = IL Slicex
"IL Vocodex" = IL Vocodex
"InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}" = CyberLink PhotoDirector 5
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{F015C84A-A7FA-4DFC-A266-1754CC536056}" = Accusoft PICVideo Motion JPEG 4
"Intelli-studio" = SAMSUNG Intelli-studio
"Internet Download Manager" = Internet Download Manager
"Karen's Directory Printer" = Karen's Directory Printer
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 11.8.0
"Magic Partition Recovery" = Magic Partition Recovery 2.3
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.2.0.1024
"Maximus" = Maximus
"MEGAsync" = MEGAsync 1.0.22
"Morphine" = Morphine
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 44.0 (x86 cs)" = Mozilla Firefox 44.0 (x86 cs)
"Mozilla Thunderbird 38.5.0 (x86 cs)" = Mozilla Thunderbird 38.5.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Opera 35.0.2066.37" = Opera Stable 35.0.2066.37
"PoiZone" = PoiZone
"rajce.net_is1" = Rajče průvodce verze 1.59.52.267
"Registr koz_is1" = Registr koz
"Registr ovcí_is1" = Registr ovcí
"Registrace uživatele zařízení Canon MG2900 series" = Registrace uživatele zařízení Canon MG2900 series
"Sawer" = Sawer
"SevenZip" = SevenZip
"SimSynth" = SimSynth
"Sony ACID 7" = Sony ACID
"Switch" = Switch Sound File Converter
"Toxic Biohazard" = Toxic Biohazard
"UltraISO_is1" = UltraISO Premium V9.53
"VLC media player" = VLC media player 1.1.0
"Wasp" = Wasp
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 5.30 (32-bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Mozilla Thunderbird 38.5.1 (x86 cs)" = Mozilla Thunderbird 38.5.1 (x86 cs)
"PhotoFiltre 7" = PhotoFiltre 7

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1.2.2016 9:45:02 | Computer Name = uzivatel_PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\cyberlink\photodirector5\Kernel\CES\CES_CacheAgent.exe.Manifest
se nezdařilo. Závislé sestavení PDR.X,type="win32",version="1.0.0.0" nelze najít.
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 1.2.2016 9:45:02 | Computer Name = uzivatel_PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\cyberlink\photodirector5\Kernel\CES\CES_AudioCacheAgent.exe.Manifest
se nezdařilo. Závislé sestavení PDR.X,type="win32",version="1.0.0.0" nelze najít.
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 2.2.2016 3:23:36 | Computer Name = uzivatel_PC | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Aplikaci nebo službu Průzkumník Windows nelze ukončit.

Error - 2.2.2016 3:35:47 | Computer Name = uzivatel_PC | Source = Windows Search Service | ID = 3006
Description =

Error - 2.2.2016 3:35:56 | Computer Name = uzivatel_PC | Source = Windows Search Service | ID = 3007
Description =

Error - 2.2.2016 3:35:59 | Computer Name = uzivatel_PC | Source = Windows Search Service | ID = 10021
Description =

Error - 2.2.2016 3:42:39 | Computer Name = uzivatel_PC | Source = Microsoft-Windows-Immersive-Shell | ID = 2484
Description = Balíček Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error - 2.2.2016 3:42:44 | Computer Name = uzivatel_PC | Source = Application Hang | ID = 1002
Description = Program SearchUI.exe verze 10.0.10240.16603 přestal spolupracovat
se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a
údržba. ID procesu: f28 Čas spuštění: 01d15d8ccda795a3 Čas ukončení: 4294967295 Cesta
k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

ID
hlášení: 889f86b0-c980-11e5-9bf4-74ea3a83a929 Úplný název balíčku s chybou: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy

ID
aplikace související s balíčkem s chybou: CortanaUI

Error - 2.2.2016 7:54:01 | Computer Name = uzivatel_PC | Source = SideBySide | ID = 16842830
Description = Generování kontextu aktivace pro C:\Users\Uživatel\Downloads\Programs\esetsmartinstaller_csy.exe
se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku . Verze součásti požadovaná
aplikací je v konfliktu s jinou verzí součásti, která je již aktivní. Konfliktní
součásti: Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Součást
2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

Error - 2.2.2016 8:13:16 | Computer Name = uzivatel_PC | Source = SideBySide | ID = 16842830
Description = Generování kontextu aktivace pro C:\Users\Uživatel\Downloads\Programs\esetsmartinstaller_csy.exe
se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku . Verze součásti požadovaná
aplikací je v konfliktu s jinou verzí součásti, která je již aktivní. Konfliktní
součásti: Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Součást
2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.

< End of report >

Příspěvekod **jaro3** » 03 úno 2016 17:13

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._core_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._controls_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._windows_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._gdi_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._misc_.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\windows._lib_cacheinvalidation.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._wizard.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32security.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._animate.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\wx._html2.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32ts.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32profile.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\unicodedata.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32com.shell.shell.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32gui.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32file.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32api.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\usb_ext.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32inet.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32process.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32pdh.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32pipe.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32event.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\thumbnails_ext.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\win32crypt.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\select.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pysqlite2._sqlite.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pyexpat.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_ssl.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_hashlib.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_elementtree.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\pywintypes27.dll ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_ctypes.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_socket.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_psutil_windows.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_multiprocessing.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\_yappi.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\common.time34.pyd ()
MOD - C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922\hashobjs_ext.pyd ()
DRV:64bit: - (360AntiHacker) -- C:\Windows\SysNative\drivers\360AntiHacker64.sys (360.cn)
DRV:64bit: - (360FsFlt) -- C:\Windows\SysNative\drivers\360FsFlt.sys (360.cn)
DRV:64bit: - (BAPIDRV) -- C:\Windows\SysNative\drivers\BAPIDRV64.SYS (360.cn)
DRV:64bit: - (360Hvm) -- C:\Windows\SysNative\drivers\360Hvm64.sys (360安全中心)
DRV:64bit: - (360Box64) -- C:\Windows\SysNative\drivers\360Box64.sys (360.cn)
DRV:64bit: - (DsArk) -- C:\Windows\SysNative\drivers\DsArk64.sys (360.cn)
DRV:64bit: - (360Camera) -- C:\Windows\SysNative\drivers\360Camera64.sys (360.cn)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.66.2: C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2: C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll File not found
[2016.01.30 10:38:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uživatel\AppData\Roaming\mozilla\Extensions
[2016.01.30 17:21:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Uživatel\AppData\Roaming\mozilla\Firefox\Profiles\pw77fm83.default-1453721257506\extensions
[2016.02.02 12:45:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2016.02.02 12:45:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll File not found

:Files
C:\Users\UIVATE~1\AppData\Local\Temp\_MEI49922
C:\Windows\SysNative\drivers\360FsFlt.sys
C:\Windows\SysNative\drivers\360AntiHacker64.sys
C:\Windows\SysNative\drivers\BAPIDRV64.SYS
C:\Windows\SysNative\drivers\360Hvm64.sys
C:\Windows\SysNative\drivers\360Box64.sys
C:\Windows\SysNative\drivers\DsArk64.sys
C:\Windows\SysNative\drivers\360Camera64.sys
C:\360SANDBOX
C:\WINDOWS\SysNative\drivers\DsArk64.sys
C:\WINDOWS\SysNative\drivers\360FsFlt.sys
C:\WINDOWS\SysNative\drivers\BAPIDRV64.SYS
C:\WINDOWS\SysNative\drivers\360Hvm64.sys
C:\WINDOWS\SysNative\drivers\360AntiHacker64.sys
C:\WINDOWS\SysNative\drivers\360Camera64.sys
C:\WINDOWS\SysNative\drivers\360Box64.sys
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\SysNative\drivers\360Hvm64.dat

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search Vyřešeno

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Re: Při každém otevření prohlížeče se mi otevře okno s vyhledávačem chedotgame.com/search

Kdo je online