Zpomalený PC

[Wooolfie]

Dobrý večer,
prosím o kontrolu logu z RSIT. Notebook je šíleně pomalý a často zamrzá, HW je podle všech testů v pořádku a pod Linuxem, co mám v dualbootu, běží ntb normálně...

Logfile of random's system information tool 1.08 (written by random/random)
Run by Carleeno at 2014-04-18 22:43:57
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 316 GB (82%) free of 387 GB
Total RAM: 8046 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:44:03, on 18.4.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Users\Carleeno\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Carleeno.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Backbone Service (BBDemon) - Dassault Systemes - C:\Program Files\Dassault Systemes\B20\win_b64\code\bin\CATSysDemon.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7410 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Dassault Systemes\B20\win_b64\code\bin\CATSysDemon.exe" -service
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\SysWOW64\vmnat.exe
C:\Windows\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe"
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\PowerISO\PWRISOVM.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Carleeno\AppData\Roaming\uTorrent\utorrent.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3352.0.1458906269\241204928" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x68c1 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.672.1.2000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-accelerated-video-decode --enable-software-compositing --channel="3352.3.718055161\247171133" /prefetch:673131151
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Carleeno\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-accelerated-video-decode --enable-software-compositing --channel="3352.10.1483953428\1211478173" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-08-09 4030008]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-04-18 22:43:57 ----D---- C:\rsit
2014-04-18 22:43:57 ----D---- C:\Program Files\trend micro
2014-03-22 12:49:01 ----D---- C:\be9691a7c899a32f9c5f9dd3af157b
2014-03-22 12:16:32 ----D---- C:\Program Files (x86)\Adobe
2014-03-22 12:16:18 ----D---- C:\ProgramData\Adobe
2014-03-22 11:59:09 ----D---- C:\Users\Carleeno\AppData\Roaming\Software602
2014-03-22 11:56:58 ----D---- C:\Program Files\Software602
2014-03-22 11:52:32 ----A---- C:\Windows\system32\NiXPS.dll
2014-03-22 11:52:32 ----A---- C:\Windows\system32\602localui.dll
2014-03-22 11:52:32 ----A---- C:\Windows\system32\602localmon.dll
2014-03-22 11:52:32 ----A---- C:\Windows\system32\602convert.dll
2014-03-22 11:52:16 ----D---- C:\Users\Carleeno\AppData\Roaming\602XML
2014-03-22 11:51:40 ----D---- C:\Users\Carleeno\AppData\Roaming\602Installer
2014-03-22 11:51:20 ----D---- C:\Program Files (x86)\Software602

======List of files/folders modified in the last 1 months======

2014-04-18 22:44:00 ----D---- C:\Windows\Temp
2014-04-18 22:43:57 ----RD---- C:\Program Files
2014-04-18 22:43:34 ----D---- C:\Users\Carleeno\AppData\Roaming\uTorrent
2014-04-18 22:34:39 ----D---- C:\Windows\System32
2014-04-18 22:34:39 ----D---- C:\Windows\inf
2014-04-18 22:34:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-18 22:29:29 ----D---- C:\ProgramData\VMware
2014-04-18 22:16:46 ----SHD---- C:\System Volume Information
2014-04-18 22:16:39 ----D---- C:\Windows\system32\catroot
2014-04-18 22:16:38 ----D---- C:\Windows\system32\catroot2
2014-04-18 22:16:28 ----D---- C:\Windows\winsxs
2014-04-18 22:00:37 ----D---- C:\Windows\system32\config
2014-03-31 09:35:08 ----N---- C:\Windows\system32\MpSigStub.exe
2014-03-23 22:56:50 ----D---- C:\Users\Carleeno\AppData\Roaming\vlc
2014-03-23 22:02:20 ----D---- C:\Windows\Prefetch
2014-03-22 12:37:59 ----SHD---- C:\Windows\Installer
2014-03-22 12:36:03 ----D---- C:\Windows\SysWOW64
2014-03-22 12:23:11 ----SD---- C:\Users\Carleeno\AppData\Roaming\Microsoft
2014-03-22 12:23:11 ----D---- C:\Users\Carleeno\AppData\Roaming\Adobe
2014-03-22 12:16:32 ----RD---- C:\Program Files (x86)
2014-03-22 12:16:32 ----D---- C:\Program Files (x86)\Common Files
2014-03-22 12:16:18 ----HD---- C:\ProgramData
2014-03-22 12:10:19 ----SHD---- C:\$Recycle.Bin
2014-03-22 12:09:32 ----RD---- C:\Users
2014-03-22 11:43:03 ----D---- C:\ProgramData\Microsoft Help
2014-03-22 11:42:08 ----RSD---- C:\Windows\assembly
2014-03-22 11:41:41 ----RSD---- C:\Windows\Fonts
2014-03-22 11:41:28 ----D---- C:\Program Files (x86)\Microsoft Works
2014-03-22 11:40:10 ----A---- C:\Windows\win.ini
2014-03-19 17:53:35 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-03-19 17:51:17 ----D---- C:\Windows\system32\MRT
2014-03-19 17:49:55 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2013-10-08 85584]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2013-10-08 73296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
R1 LUMDriver;LUMDriver; \??\C:\Windows\system32\drivers\LUMDriver.sys [2008-01-02 24848]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2011-08-04 187632]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2013-10-09 53816]
R2 rimspci;rimspci; C:\Windows\system32\DRIVERS\rimssne64.sys [2010-09-08 94208]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2013-10-18 46160]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2013-10-18 30800]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2013-10-18 64080]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-09 1394176]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-01-14 6106624]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2007-08-03 11392]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2013-10-18 32848]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2013-10-18 20560]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 HtcVCom32;HTC Diagnostic Port; C:\Windows\system32\DRIVERS\HtcVComV64.sys [2010-03-08 121800]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2008-05-06 14464]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-01-14 202752]
R2 BBDemon;Backbone Service; C:\Program Files\Dassault Systemes\B20\win_b64\code\bin\CATSysDemon.exe [2009-09-26 46592]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-08-09 974944]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [2013-10-18 86096]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2013-10-18 358480]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2013-10-09 905272]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2013-10-18 437328]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Márty84]

Zdravim

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

[Wooolfie]

Tak postup jsem dodržel, ale OTL mi pokaždé hodí chybovou hlášku "Cannot create file C:\...\cmd.bat"...

[Márty84]

Obcas se to stane, ze OTL tuhle chybku vyhodi

Spustte ho podle stejneho navodu jeste jednou, ale s timto upravenym skriptem

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

[Wooolfie]

Omlouvám se za pozdní reakce, byl jsem mimo republiku
Tak ten druhej skript zabral a výstupy jsou zde...

EXTRAS
OTL Extras logfile created on: 21.4.2014 22:01:33 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Carleeno\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

7,86 Gb Total Physical Memory | 5,46 Gb Available Physical Memory | 69,46% Memory free
15,71 Gb Paging File | 13,40 Gb Available in Paging File | 85,30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 378,13 Gb Total Space | 315,82 Gb Free Space | 83,52% Space Free | Partition Type: NTFS

Computer Name: CARLEENO-NB | User Name: Carleeno | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{189AFA37-7A0C-4581-80B1-1234E48D4214}" = lport=139 | protocol=6 | dir=in | app=system |
"{2331BD18-4CC9-4A4A-A10C-F96DAAD43C5D}" = lport=138 | protocol=17 | dir=in | app=system |
"{2785CEC4-661D-40C0-8C1C-BDEF97B3B8AD}" = lport=137 | protocol=17 | dir=in | app=system |
"{2A09CD0E-6059-46E4-9C53-51BD3D752FE7}" = rport=137 | protocol=17 | dir=out | app=system |
"{36A18CCC-5BBB-4AF0-A47B-521C56A33853}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3D384F69-7D67-4D5D-B741-57424371D9C8}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5133E807-17E2-4E9D-9EB4-D6D35DD60997}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{77592470-3B30-46CA-88A9-B5695EAC19D3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7B1D09B4-0D28-4123-A02E-087ABE32934A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8465EB7B-8357-4FCF-A0F1-DC14CFBACF05}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8891DBD5-B941-4CC7-A87F-1A33EB04CE7A}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{89659F9C-D72D-4539-B059-4B11A4B055C3}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{8AB7AB10-690D-46EF-9B6D-3EC839A707E6}" = lport=445 | protocol=6 | dir=in | app=system |
"{A794D988-4C9C-498E-AA97-71E9499D25A1}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BB313172-603B-4CDD-A361-15E3BAEE1522}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C2B4F7CF-C66B-4E87-96C8-0E519CEF0C49}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D1CA3CDA-C9E9-427F-9A57-08342428780C}" = rport=445 | protocol=6 | dir=out | app=system |
"{D3C55C4E-3369-459D-91D4-0097CFD01D71}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D767BC47-415F-475D-A27A-6912D65B349D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{E4BE0B46-2F66-46F0-8E34-C0D063AB67CE}" = rport=139 | protocol=6 | dir=out | app=system |
"{ECB71DD6-C581-40E2-B40E-16F7FA552965}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F5DD506F-1E51-4FB7-8C82-667F89CAABC0}" = rport=138 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01184E79-A241-4D02-A980-35FE47A507A9}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{16B50A01-99B3-4898-9D23-20AD032EE7E4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{198329C7-0227-48B1-8C76-4D20E133E460}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{28BDD6D8-C061-4C19-9F44-E3816C4A87A6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2B908707-D1A2-4F44-959E-6FC026985E44}" = dir=in | app=c:\program files (x86)\vmware\vmware player\vmware-authd.exe |
"{30DAC516-05CE-4288-A867-92467F36C0E1}" = dir=in | app=c:\program files (x86)\vmware\vmware player\vmware-authd.exe |
"{3898654C-1BC7-4004-ABC5-76D312F0BEBF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3D4979B4-9980-4BCB-8C03-B03EB76403C0}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4CC6FFF4-E095-497A-B45F-559FA5EB25E2}" = protocol=17 | dir=in | app=c:\users\carleeno\appdata\roaming\utorrent\utorrent.exe |
"{61AEE624-7519-4770-AED5-A13F9E9766D3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{638C590D-FFF1-4EAD-AE85-B992FBF35C5C}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{65E300D1-40FD-4202-8D4B-AF0804CBED40}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{697217FF-5D15-4589-9C7E-F72DA6DC6DBD}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{78280766-8154-4BED-BA5D-D55D1B8C94BA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{79F1B532-E026-4687-9A53-00F11783E1B4}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7F820CE6-BBCA-492A-B203-B303231D8670}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{970BC4A6-AB12-44D9-88E9-2D6493DC1ADA}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{ADC63A29-525F-4533-A8E8-13E75AE90CB9}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{B772B1B1-47E5-48DE-9D28-B28878132E6D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BA6F5810-6981-43E4-89AB-E19D73D08A78}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C0A1DBAC-8565-4A70-B0D3-F97DFFE187E8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{C455095D-2F49-454B-9588-EDD18035DFB3}" = protocol=6 | dir=in | app=c:\users\carleeno\appdata\roaming\utorrent\utorrent.exe |
"{CE315160-F1AD-459E-BE7D-9B791CEF06EC}" = protocol=6 | dir=out | app=system |
"{CEE82660-E5E0-44BA-9BFF-84C57B96A26C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D1DA2407-B377-46A8-8C05-570921A89F04}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{EB2CEA80-2B47-4A50-AE13-2E46964F8D98}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F1BBD40B-C0C1-4F23-9B41-082E86875E59}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\soft602\langserv.exe |
"{F628DA2D-04E2-4F59-812A-33E48FC67C78}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FDA49E41-9EC2-48B3-9D8C-890075A90881}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{27D0BA93-9779-481A-BC4A-2F966A2B0DC6}" = ESET Smart Security
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{50813B8C-FCBB-3C61-8039-EAAA93029066}" = Microsoft .NET Framework 4.5.1 (CSY)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{CF1EB598-B424-436A-B15F-B763846BA970}" = Dassault Systemes Software Prerequisites x86-x64
"{E452E727-86B8-4233-8CC3-41FD817AFAFF}" = VMware Player
"Dassault Systemes B20_0" = Dassault Systemes Software B20
"Dassault Systemes B20_1" = Dassault Systemes Software B20_5F75C178
"WinRAR archiver" = WinRAR 4.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{6D85C0A8-97DB-4D82-8884-4F6EE939F321}" = Software602 Form Filler
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A13D16C5-38A9-4D96-9647-59FCCAB12A85}" = Visual Basic for Applications (R) Core - English
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}" = VBA (3821b)
"{FB97C283-1F3C-42D4-AE01-ADC1DC12F774}" = Visual Basic for Applications (R) Core
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"HD Tune Pro_is1" = HD Tune Pro 5.50
"PowerISO" = PowerISO
"VLC media player" = VLC media player 2.1.3
"VMware_Player" = VMware Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.3.2014 17:02:32 | Computer Name = Carleeno-NB | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 5.3.2014 17:02:37 | Computer Name = Carleeno-NB | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 5.3.2014 17:09:45 | Computer Name = Carleeno-NB | Source = .NET Runtime Optimization Service | ID = 1107
Description =

Error - 7.3.2014 15:04:42 | Computer Name = Carleeno-NB | Source = Application Hang | ID = 1002
Description = Program CXINST.exe verze 5.20.0.9296 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
cac Čas spuštění: 01cf3a34a46de620 Čas ukončení: 0 Cesta k aplikaci: C:\Users\Carleeno\AppData\Local\Temp\TempDSUnload\CXINST.exe

ID
hlášení: 455b3020-a62b-11e3-802c-e80e8e446546

Error - 8.3.2014 9:47:54 | Computer Name = Carleeno-NB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: vlc.exe, verze: 2.1.3.0, časové razítko:
0x00000004 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko:
0x521ea8e7 Kód výjimky: 0xc0000374 Posun chyby: 0x000ce753 ID chybujícího procesu:
0xf80 Čas spuštění chybující aplikace: 0x01cf3ad4f7a608b1 Cesta k chybující aplikaci:
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID
zprávy: 3f5a1362-a6c8-11e3-9f22-54424975c178

Error - 8.3.2014 17:25:39 | Computer Name = Carleeno-NB | Source = Application Hang | ID = 1002
Description = Program utorrent.exe verze 2.2.1.25534 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
dc0 Čas spuštění: 01cf3b13c1c4d806 Čas ukončení: 6 Cesta k aplikaci: C:\Users\Carleeno\AppData\Roaming\uTorrent\utorrent.exe

ID
hlášení: 251b8b89-a708-11e3-87b3-c44619c81d0d

Error - 17.3.2014 15:35:10 | Computer Name = Carleeno-NB | Source = Application Hang | ID = 1002
Description = Program chrome.exe verze 33.0.1750.154 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
ecc Čas spuštění: 01cf421682f9e3a9 Čas ukončení: 4 Cesta k aplikaci: C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe ID hlášení: 14371211-ae0b-11e3-bd2d-c44619c81d0d


Error - 24.3.2014 13:56:56 | Computer Name = Carleeno-NB | Source = System Restore | ID = 8193
Description =

Error - 24.3.2014 14:32:25 | Computer Name = Carleeno-NB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: unetbootin-windows-585.exe, verze: 1.1.1.1,
časové razítko: 0x51d3d1a9 Název chybujícího modulu: unetbootin-windows-585.exe,
verze: 1.1.1.1, časové razítko: 0x51d3d1a9 Kód výjimky: 0xc0000005 Posun chyby: 0x00972492
ID
chybujícího procesu: 0xf50 Čas spuštění chybující aplikace: 0x01cf478ee42cdd7d Cesta
k chybující aplikaci: C:\Users\Carleeno\Downloads\unetbootin-windows-585.exe Cesta
k chybujícímu modulu: C:\Users\Carleeno\Downloads\unetbootin-windows-585.exe ID
zprávy: a4de36dd-b382-11e3-9b4a-c44619c81d0d

Error - 19.4.2014 2:50:18 | Computer Name = Carleeno-NB | Source = MsiInstaller | ID = 11935
Description =

[ System Events ]
Error - 19.4.2014 2:49:40 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Windows Search bylo dosaženo časového
limitu (30000 ms).

Error - 19.4.2014 2:49:40 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 19.4.2014 2:50:37 | Computer Name = Carleeno-NB | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80070643): Security Update for Microsoft Visual C++ 2008 Service
Pack 1 Redistributable Package (KB2538243).

Error - 19.4.2014 2:50:52 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Windows Search bylo dosaženo časového
limitu (30000 ms).

Error - 19.4.2014 2:50:52 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 19.4.2014 2:51:29 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Windows Search bylo dosaženo časového
limitu (30000 ms).

Error - 19.4.2014 2:51:29 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 19.4.2014 6:55:31 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Windows Search bylo dosaženo časového
limitu (30000 ms).

Error - 19.4.2014 6:55:31 | Computer Name = Carleeno-NB | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 19.4.2014 6:55:31 | Computer Name = Carleeno-NB | Source = DCOM | ID = 10005
Description =


< End of report >

[Wooolfie]

OTL

OTL logfile created on: 21.4.2014 22:01:33 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Carleeno\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

7,86 Gb Total Physical Memory | 5,46 Gb Available Physical Memory | 69,46% Memory free
15,71 Gb Paging File | 13,40 Gb Available in Paging File | 85,30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 378,13 Gb Total Space | 315,82 Gb Free Space | 83,52% Space Free | Partition Type: NTFS

Computer Name: CARLEENO-NB | User Name: Carleeno | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.04.18 23:39:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Carleeno\Desktop\OTL.exe
PRC - [2014.04.02 03:58:05 | 000,841,032 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013.12.21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.10.18 13:45:50 | 000,437,328 | ---- | M] (VMware, Inc.) -- C:\Windows\SysWOW64\vmnat.exe
PRC - [2013.10.18 13:45:46 | 000,358,480 | ---- | M] (VMware, Inc.) -- C:\Windows\SysWOW64\vmnetdhcp.exe
PRC - [2013.10.18 12:52:30 | 000,086,096 | ---- | M] (VMware, Inc.) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
PRC - [2011.10.10 13:55:04 | 000,085,344 | ---- | M] (Software602 a.s.) -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
PRC - [2011.08.09 22:39:22 | 000,974,944 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2010.04.12 10:40:16 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE


========== Modules (No Company Name) ==========

MOD - [2014.04.02 03:58:03 | 000,390,472 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppgooglenaclpluginchrome.dll
MOD - [2014.04.02 03:57:59 | 004,081,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
MOD - [2014.04.02 03:57:54 | 000,674,632 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
MOD - [2014.04.02 03:57:53 | 000,093,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libegl.dll
MOD - [2014.04.02 03:57:52 | 001,647,432 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
MOD - [2014.04.02 03:57:49 | 000,065,352 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014.03.01 06:33:34 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2011.08.09 22:39:22 | 000,974,944 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2010.01.14 05:31:48 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.09.26 03:24:30 | 000,046,592 | ---- | M] (Dassault Systemes) [Auto | Running] -- C:\Program Files\Dassault Systemes\B20\win_b64\code\bin\CATSysDemon.exe -- (BBDemon)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.12.21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.10.18 13:45:50 | 000,437,328 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vmnat.exe -- (VMware NAT Service)
SRV - [2013.10.18 13:45:46 | 000,358,480 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vmnetdhcp.exe -- (VMnetDHCP)
SRV - [2013.10.18 12:52:30 | 000,086,096 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe -- (VMAuthdService)
SRV - [2013.10.09 09:04:16 | 000,905,272 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe -- (VMUSBArbService)
SRV - [2013.09.11 22:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2011.10.10 13:55:04 | 000,085,344 | ---- | M] (Software602 a.s.) [Auto | Running] -- C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe -- (602XML Updater)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013.10.18 13:46:18 | 000,064,080 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmx86.sys -- (vmx86)
DRV:64bit: - [2013.10.18 13:45:12 | 000,030,800 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmnetuserif.sys -- (VMnetuserif)
DRV:64bit: - [2013.10.18 13:44:58 | 000,046,160 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\vmnetbridge.sys -- (VMnetBridge)
DRV:64bit: - [2013.10.18 13:44:58 | 000,020,560 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vmnetadapter.sys -- (VMnetAdapter)
DRV:64bit: - [2013.10.18 13:44:54 | 000,032,848 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VMkbd.sys -- (vmkbd)
DRV:64bit: - [2013.10.09 09:04:06 | 000,053,816 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\hcmon.sys -- (hcmon)
DRV:64bit: - [2013.10.08 19:21:10 | 000,073,296 | ---- | M] (VMware, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vsock.sys -- (vsock)
DRV:64bit: - [2013.10.08 19:21:06 | 000,085,584 | ---- | M] (VMware, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmci.sys -- (vmci)
DRV:64bit: - [2013.10.02 04:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.08.23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.08.09 14:57:12 | 000,202,576 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2011.08.04 10:20:38 | 000,187,632 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2011.08.04 10:20:38 | 000,146,432 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2011.08.04 10:20:38 | 000,062,496 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2011.08.04 10:20:38 | 000,038,288 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 11:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010.09.15 15:50:10 | 000,402,720 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2010.09.08 10:43:26 | 000,094,208 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimssne64.sys -- (rimspci)
DRV:64bit: - [2010.04.12 10:55:00 | 000,091,568 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu)
DRV:64bit: - [2010.03.08 21:08:36 | 000,121,800 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HtcVComV64.sys -- (HtcVCom32)
DRV:64bit: - [2010.01.14 06:06:20 | 006,106,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.10.09 03:41:02 | 001,394,176 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009.09.17 20:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.06 17:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2008.01.02 14:11:50 | 000,024,848 | ---- | M] (IBM) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\LUMDriver.sys -- (LUMDriver)
DRV:64bit: - [2007.08.03 06:35:54 | 000,011,392 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SFEP.sys -- (SFEP)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@software602.cz/602XML Filler: C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2014.03.07 19:07:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014.03.07 19:07:08 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.cz/ig
CHR - plugin: Error reading preferences file
CHR - Extension: Angry Birds = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Dokumenty Google = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhledávání Google = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Reaction gifs and memes for facebook chat = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjoingkjjihkkcjmcaldeolkdiffodf\2.1.8_0\
CHR - Extension: Peněženka Google = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: Cube Slam = C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkcoeeddamedegogbcmdbadnoifmfipn\0.75_0\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D1060898-E06D-4ED6-B2E0-C0292301B2B4}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3bcd2df4-a55b-11e3-9a98-c44619c81d0d}\Shell - "" = AutoRun
O33 - MountPoints2\{3bcd2df4-a55b-11e3-9a98-c44619c81d0d}\Shell\AutoRun\command - "" = E:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{3bcd2dfa-a55b-11e3-9a98-c44619c81d0d}\Shell - "" = AutoRun
O33 - MountPoints2\{3bcd2dfa-a55b-11e3-9a98-c44619c81d0d}\Shell\AutoRun\command - "" = E:\HTC_Sync_Manager_PC.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.04.19 08:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2014.04.18 23:39:22 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Carleeno\Desktop\OTL.exe
[2014.04.18 22:43:57 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.04.18 22:43:57 | 000,000,000 | ---D | C] -- C:\rsit
[2014.04.18 22:40:57 | 000,190,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2014.04.18 22:40:56 | 000,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2014.04.18 22:40:56 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iologmsg.dll
[2014.04.18 22:40:56 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iologmsg.dll
[2014.04.18 22:16:19 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2014.04.18 22:16:18 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2014.04.18 22:16:18 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2014.04.18 22:16:18 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2014.04.18 22:16:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2014.04.18 22:16:18 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2014.04.18 22:16:18 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2014.04.18 22:15:15 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2014.04.18 22:15:14 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2014.04.18 22:15:14 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe

========== Files - Modified Within 30 Days ==========

[2014.04.21 22:02:37 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.04.21 21:58:57 | 000,000,956 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.04.21 21:58:57 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.04.21 21:58:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.04.19 12:59:59 | 000,671,536 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.04.19 12:59:59 | 000,656,862 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.04.19 12:59:59 | 000,142,676 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.04.19 12:59:59 | 000,123,260 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.04.19 12:59:58 | 001,591,504 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.04.19 12:59:53 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.04.19 12:59:53 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.04.19 12:53:26 | 2032,738,303 | -HS- | M] () -- C:\hiberfil.sys
[2014.04.18 23:39:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Carleeno\Desktop\OTL.exe
[2014.04.18 22:27:36 | 000,003,304 | ---- | M] () -- C:\bootsqm.dat

========== Files Created - No Company Name ==========

[2014.04.18 23:46:30 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.04.18 22:27:36 | 000,003,304 | ---- | C] () -- C:\bootsqm.dat
[2014.03.06 00:30:59 | 001,609,904 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.03.05 20:29:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.07.25 13:00:18 | 001,129,312 | ---- | C] () -- C:\Windows\SysWow64\602convert.dll

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.07.26 04:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.03.22 11:52:37 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\602Installer
[2014.03.22 11:58:52 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\602XML
[2014.03.07 20:39:58 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\DassaultSystemes
[2014.03.07 19:13:38 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\ESET
[2014.03.07 19:52:59 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\HD Tune Pro
[2014.03.22 11:59:09 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\Software602
[2014.04.19 09:06:57 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\uTorrent

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,009,166 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2014.03.05 21:55:39 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.03.05 21:55:43 | 000,000,956 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 15:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010.11.20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2013.09.08 04:30:37 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\SysNative\drivers\tcpip.sys
[2013.09.08 04:30:37 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2010.11.20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.01.04 07:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2013.01.03 07:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2013.09.07 04:27:48 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2013.07.06 07:20:38 | 001,900,992 | ---- | M] (Microsoft Corporation) MD5=B27F13153343BC37A27EAE01634D94E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_1190b9b296509a2f\tcpip.sys
[2013.01.03 08:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2013.01.04 07:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2013.07.06 08:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_114dcae97cfeb81b\tcpip.sys
[2013.11.26 13:34:34 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=F55B41AA6114568AC558ADBABDA85620 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_11c3cc3c962abcc3\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< >

< %systemroot%*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[22 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.03.22 11:52:37 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\602Installer
[2014.03.22 11:58:52 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\602XML
[2014.03.22 12:23:11 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\Adobe
[2014.03.07 20:39:58 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\DassaultSystemes
[2014.03.07 19:13:38 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\ESET
[2014.03.07 19:52:59 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\HD Tune Pro
[2014.03.05 08:01:56 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\Identities
[2009.07.14 09:45:14 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\Media Center Programs
[2014.03.22 12:23:11 | 000,000,000 | --SD | M] -- C:\Users\Carleeno\AppData\Roaming\Microsoft
[2014.03.22 11:59:09 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\Software602
[2014.04.19 09:06:57 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\uTorrent
[2014.03.23 22:56:50 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\vlc
[2014.03.16 13:58:10 | 000,000,000 | ---D | M] -- C:\Users\Carleeno\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.01.01 01:00:00 | 000,393,728 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Carleeno\AppData\Roaming\uTorrent\utorrent.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2014.04.21 22:06:48 | 000,000,952 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.04.21 22:06:00 | 000,000,956 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< *crack* /s >
[2014.03.06 20:28:25 | 000,000,874 | ---- | M] () -- \Users\Carleeno\AppData\Roaming\Microsoft\Windows\Recent\ESET.Smart.Security.5.&.ESET.NOD32.AntiVirus.5.Incl.Crack(32.and.64.Bit).lnk
[2014.03.06 20:25:35 | 000,035,033 | ---- | M] () -- \Users\Carleeno\AppData\Roaming\uTorrent\ESET.Smart.Security.5.&.ESET.NOD32.AntiVirus.5.Incl.Crack(32.and.64.Bit).torrent
[2014.04.18 22:37:24 | 003,526,988 | ---- | M] () -- \Users\Carleeno\Downloads\SIEMENS.PLM.NX.V7.5-MAGNiTUDE\nx-7.5.0.32_32bit_crack_hotfix_LND.rar

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2009.10.17 12:13:12 | 000,025,920 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\code\clr\V5JsyClrLoader.dll
[2009.07.11 02:49:02 | 000,002,520 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\java\CATJsyClassLoader.jar
[2009.07.11 02:49:58 | 000,006,795 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\java\CATJWSIWASLoader.jar
[2009.07.11 02:48:58 | 000,005,919 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\java\V5JsyLoader.jar
[2009.07.11 02:49:02 | 000,002,520 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\javaserver\CATJsyClassLoader.jar
[2009.07.11 02:49:58 | 000,006,795 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\javaserver\CATJWSIWASLoader.jar
[2009.07.11 02:48:58 | 000,005,919 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\docs\javaserver\V5JsyLoader.jar
[2006.04.12 17:07:12 | 000,001,702 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATFMSaveLoadError.CATNls
[1999.04.29 18:31:30 | 000,000,066 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATOMCATSDMSaveLoadError.CATNls
[2008.05.20 19:33:14 | 000,001,275 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATOMLoadError.CATNls
[2005.04.19 10:33:58 | 000,003,533 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATOMSaveLoadError.CATNls
[2008.07.10 20:11:24 | 000,004,981 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATOsmSaveLoadError.CATNls
[2003.06.27 11:47:46 | 000,000,621 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATSmBOMSaveLoadError.CATNls
[2005.02.22 18:44:36 | 000,000,098 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATStandardSaveLoadError.CATNls
[2009.08.05 14:49:14 | 000,001,581 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\OMCATSaveLoadError.CATNls
[2009.09.01 12:14:08 | 000,002,084 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATFMSaveLoadError.CATNls
[2009.09.01 12:18:00 | 000,000,108 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATOMCATSDMSaveLoadError.CATNls
[2009.09.01 12:18:02 | 000,001,467 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATOMLoadError.CATNls
[2009.09.01 12:18:02 | 000,004,261 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATOMSaveLoadError.CATNls
[2009.09.01 12:18:04 | 000,006,264 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATOsmSaveLoadError.CATNls
[2009.09.01 12:20:40 | 000,000,798 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATSmBOMSaveLoadError.CATNls
[2009.09.01 12:21:24 | 000,000,118 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATStandardSaveLoadError.CATNls
[2009.10.23 18:06:18 | 000,001,909 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\OMCATSaveLoadError.CATNls
[2009.08.31 17:06:04 | 000,002,065 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATFMSaveLoadError.CATNls
[2009.08.31 17:08:16 | 000,000,088 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATOMCATSDMSaveLoadError.CATNls
[2009.08.31 17:08:16 | 000,001,439 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATOMLoadError.CATNls
[2009.08.31 17:08:16 | 000,004,380 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATOMSaveLoadError.CATNls
[2009.08.31 17:08:18 | 000,006,160 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATOsmSaveLoadError.CATNls
[2009.08.31 17:09:48 | 000,000,839 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATSmBOMSaveLoadError.CATNls
[2009.08.31 17:10:18 | 000,000,110 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATStandardSaveLoadError.CATNls
[2009.10.23 17:58:58 | 000,001,860 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\OMCATSaveLoadError.CATNls
[2009.09.04 12:58:00 | 000,001,966 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATFMSaveLoadError.CATNls
[2009.09.04 12:59:28 | 000,000,089 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATOMCATSDMSaveLoadError.CATNls
[2009.09.04 12:59:28 | 000,001,370 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATOMLoadError.CATNls
[2009.09.04 12:59:28 | 000,004,167 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATOMSaveLoadError.CATNls
[2009.09.04 12:59:30 | 000,006,121 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATOsmSaveLoadError.CATNls
[2009.09.04 13:00:32 | 000,000,743 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATSmBOMSaveLoadError.CATNls
[2009.09.04 13:00:54 | 000,000,117 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATStandardSaveLoadError.CATNls
[2009.10.16 17:29:08 | 000,001,934 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\OMCATSaveLoadError.CATNls
[2009.08.28 17:40:30 | 000,001,774 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATFMSaveLoadError.CATNls
[2009.08.28 17:41:28 | 000,000,072 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATOMCATSDMSaveLoadError.CATNls
[2009.08.28 17:41:28 | 000,001,197 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATOMLoadError.CATNls
[2009.08.28 17:41:28 | 000,003,437 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATOMSaveLoadError.CATNls
[2009.08.28 17:41:30 | 000,004,842 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATOsmSaveLoadError.CATNls
[2009.08.28 17:41:54 | 000,000,702 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATSmBOMSaveLoadError.CATNls
[2009.08.28 17:41:58 | 000,000,087 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATStandardSaveLoadError.CATNls
[2009.10.21 16:01:52 | 000,001,495 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\OMCATSaveLoadError.CATNls
[2009.08.28 15:14:00 | 000,001,639 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATFMSaveLoadError.CATNls
[2009.08.28 15:16:00 | 000,000,074 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATOMCATSDMSaveLoadError.CATNls
[2009.08.28 15:16:00 | 000,001,245 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATOMLoadError.CATNls
[2009.08.28 15:16:00 | 000,003,466 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATOMSaveLoadError.CATNls
[2009.08.28 15:16:02 | 000,004,993 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATOsmSaveLoadError.CATNls
[2009.08.28 15:17:42 | 000,000,663 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATSmBOMSaveLoadError.CATNls
[2009.08.28 15:17:50 | 000,000,092 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATStandardSaveLoadError.CATNls
[2009.08.28 15:20:32 | 000,001,539 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\OMCATSaveLoadError.CATNls
[2009.08.31 17:56:34 | 000,001,845 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATFMSaveLoadError.CATNls
[2009.08.31 17:58:02 | 000,000,074 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATOMCATSDMSaveLoadError.CATNls
[2009.08.31 17:58:02 | 000,001,357 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATOMLoadError.CATNls
[2009.08.31 17:58:02 | 000,003,753 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATOMSaveLoadError.CATNls
[2009.08.31 17:58:04 | 000,005,318 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATOsmSaveLoadError.CATNls
[2009.08.31 17:59:32 | 000,000,726 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATSmBOMSaveLoadError.CATNls
[2009.08.31 17:59:36 | 000,000,099 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATStandardSaveLoadError.CATNls
[2009.10.13 12:12:38 | 000,001,623 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\OMCATSaveLoadError.CATNls
[2009.09.30 18:31:10 | 000,001,195 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATFMSaveLoadError.CATNls
[2009.09.30 18:33:00 | 000,000,053 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMCATSDMSaveLoadError.CATNls
[2009.09.30 18:33:00 | 000,000,958 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMLoadError.CATNls
[2009.09.30 18:33:00 | 000,002,562 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMSaveLoadError.CATNls
[2009.09.30 18:33:02 | 000,003,980 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOsmSaveLoadError.CATNls
[2009.09.30 18:33:32 | 000,000,503 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATSmBOMSaveLoadError.CATNls
[2009.09.30 18:33:34 | 000,000,063 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATStandardSaveLoadError.CATNls
[2009.10.12 14:43:40 | 000,001,128 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\OMCATSaveLoadError.CATNls
[2005.06.09 17:05:40 | 000,000,126 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\widget\FileUploader.XMLWidget
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2009.10.17 12:13:12 | 000,025,920 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\code\clr\V5JsyClrLoader.dll
[2009.07.11 02:49:02 | 000,002,520 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\CATJsyClassLoader.jar
[2009.07.11 02:49:58 | 000,006,795 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\CATJWSIWASLoader.jar
[2009.09.29 12:35:40 | 000,002,045 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_de.properties
[2004.01.23 18:29:00 | 000,001,684 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_en.properties
[2009.09.29 12:30:18 | 000,002,362 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_fr.properties
[2009.09.29 12:42:02 | 000,004,216 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_ja.properties
[2009.09.29 13:12:36 | 000,003,795 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_ko.properties
[2009.09.29 13:07:24 | 000,002,550 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\ClassLoader_zh.properties
[2009.07.11 02:48:58 | 000,005,919 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\java\V5JsyLoader.jar
[2009.07.11 02:49:02 | 000,002,520 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\javaserver\CATJsyClassLoader.jar
[2009.07.11 02:49:58 | 000,006,795 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\javaserver\CATJWSIWASLoader.jar
[2009.07.11 02:48:58 | 000,005,919 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\docs\javaserver\V5JsyLoader.jar

[Wooolfie]

[2006.04.12 17:07:12 | 000,001,702 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATFMSaveLoadError.CATNls
[1999.11.26 15:59:46 | 000,000,147 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATMdlEdtSaveLoadError.CATNls
[2005.05.18 19:56:50 | 000,000,584 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATMMSaveLoadError.CATNls
[1999.04.29 18:31:30 | 000,000,066 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATOMCATSDMSaveLoadError.CATNls
[2008.05.20 19:33:14 | 000,001,275 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATOMLoadError.CATNls
[2005.04.19 10:33:58 | 000,003,533 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATOMSaveLoadError.CATNls
[2008.07.10 20:11:24 | 000,004,981 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATOsmSaveLoadError.CATNls
[2003.06.27 11:47:46 | 000,000,621 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATSmBOMSaveLoadError.CATNls
[2005.02.22 18:44:36 | 000,000,098 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATStandardSaveLoadError.CATNls
[2007.09.06 18:48:08 | 000,000,464 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATStkParamLoaderCmd.CATNls
[2009.08.05 14:49:14 | 000,001,581 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\OMCATSaveLoadError.CATNls
[2009.09.01 12:14:08 | 000,002,084 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATFMSaveLoadError.CATNls
[2009.09.01 12:16:14 | 000,000,161 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATMdlEdtSaveLoadError.CATNls
[2009.09.01 12:17:28 | 000,000,680 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATMMSaveLoadError.CATNls
[2009.09.01 12:18:00 | 000,000,108 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATOMCATSDMSaveLoadError.CATNls
[2009.09.01 12:18:02 | 000,001,467 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATOMLoadError.CATNls
[2009.09.01 12:18:02 | 000,004,261 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATOMSaveLoadError.CATNls
[2009.09.01 12:18:04 | 000,006,264 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATOsmSaveLoadError.CATNls
[2009.09.01 12:20:40 | 000,000,798 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATSmBOMSaveLoadError.CATNls
[2009.09.01 12:21:24 | 000,000,118 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATStandardSaveLoadError.CATNls
[2009.10.23 18:06:18 | 000,001,909 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\OMCATSaveLoadError.CATNls
[2009.08.31 17:06:04 | 000,002,065 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATFMSaveLoadError.CATNls
[2009.08.31 17:07:10 | 000,000,149 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATMdlEdtSaveLoadError.CATNls
[2009.08.31 17:07:56 | 000,000,712 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATMMSaveLoadError.CATNls
[2009.08.31 17:08:16 | 000,000,088 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATOMCATSDMSaveLoadError.CATNls
[2009.08.31 17:08:16 | 000,001,439 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATOMLoadError.CATNls
[2009.08.31 17:08:16 | 000,004,380 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATOMSaveLoadError.CATNls
[2009.08.31 17:08:18 | 000,006,160 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATOsmSaveLoadError.CATNls
[2009.08.31 17:09:48 | 000,000,839 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATSmBOMSaveLoadError.CATNls
[2009.08.31 17:10:18 | 000,000,110 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATStandardSaveLoadError.CATNls
[2009.10.23 17:58:58 | 000,001,860 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\OMCATSaveLoadError.CATNls
[2009.09.04 12:58:00 | 000,001,966 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATFMSaveLoadError.CATNls
[2009.09.04 12:58:44 | 000,000,161 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATMdlEdtSaveLoadError.CATNls
[2009.09.04 12:59:14 | 000,000,670 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATMMSaveLoadError.CATNls
[2009.09.04 12:59:28 | 000,000,089 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATOMCATSDMSaveLoadError.CATNls
[2009.09.04 12:59:28 | 000,001,370 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATOMLoadError.CATNls
[2009.09.04 12:59:28 | 000,004,167 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATOMSaveLoadError.CATNls
[2009.09.04 12:59:30 | 000,006,121 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATOsmSaveLoadError.CATNls
[2009.09.04 13:00:32 | 000,000,743 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATSmBOMSaveLoadError.CATNls
[2009.09.04 13:00:54 | 000,000,117 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATStandardSaveLoadError.CATNls
[2009.10.16 17:29:08 | 000,001,934 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\OMCATSaveLoadError.CATNls
[2009.08.28 17:40:30 | 000,001,774 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATFMSaveLoadError.CATNls
[2009.08.28 17:41:16 | 000,000,128 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATMdlEdtSaveLoadError.CATNls
[2009.08.28 17:41:22 | 000,000,593 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATMMSaveLoadError.CATNls
[2009.08.28 17:41:28 | 000,000,072 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATOMCATSDMSaveLoadError.CATNls
[2009.08.28 17:41:28 | 000,001,197 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATOMLoadError.CATNls
[2009.08.28 17:41:28 | 000,003,437 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATOMSaveLoadError.CATNls
[2009.08.28 17:41:30 | 000,004,842 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATOsmSaveLoadError.CATNls
[2009.08.28 17:41:54 | 000,000,702 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATSmBOMSaveLoadError.CATNls
[2009.08.28 17:41:58 | 000,000,087 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATStandardSaveLoadError.CATNls
[2009.10.21 16:01:52 | 000,001,495 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\OMCATSaveLoadError.CATNls
[2009.08.28 15:14:00 | 000,001,639 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATFMSaveLoadError.CATNls
[2009.08.28 15:15:30 | 000,000,129 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATMdlEdtSaveLoadError.CATNls
[2009.08.28 15:15:44 | 000,000,588 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATMMSaveLoadError.CATNls
[2009.08.28 15:16:00 | 000,000,074 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATOMCATSDMSaveLoadError.CATNls
[2009.08.28 15:16:00 | 000,001,245 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATOMLoadError.CATNls
[2009.08.28 15:16:00 | 000,003,466 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATOMSaveLoadError.CATNls
[2009.08.28 15:16:02 | 000,004,993 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATOsmSaveLoadError.CATNls
[2009.08.28 15:17:42 | 000,000,663 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATSmBOMSaveLoadError.CATNls
[2009.08.28 15:17:50 | 000,000,092 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATStandardSaveLoadError.CATNls
[2009.08.28 15:20:32 | 000,001,539 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\OMCATSaveLoadError.CATNls
[2009.08.31 17:56:34 | 000,001,845 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATFMSaveLoadError.CATNls
[2009.08.31 17:57:38 | 000,000,145 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATMdlEdtSaveLoadError.CATNls
[2009.08.31 17:57:48 | 000,000,695 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATMMSaveLoadError.CATNls
[2009.08.31 17:58:02 | 000,000,074 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATOMCATSDMSaveLoadError.CATNls
[2009.08.31 17:58:02 | 000,001,357 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATOMLoadError.CATNls
[2009.08.31 17:58:02 | 000,003,753 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATOMSaveLoadError.CATNls
[2009.08.31 17:58:04 | 000,005,318 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATOsmSaveLoadError.CATNls
[2009.08.31 17:59:32 | 000,000,726 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATSmBOMSaveLoadError.CATNls
[2009.08.31 17:59:36 | 000,000,099 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATStandardSaveLoadError.CATNls
[2009.10.13 12:12:38 | 000,001,623 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\OMCATSaveLoadError.CATNls
[2009.09.30 18:31:10 | 000,001,195 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATFMSaveLoadError.CATNls
[2009.09.30 18:31:36 | 000,000,099 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATMdlEdtSaveLoadError.CATNls
[2009.09.30 18:31:40 | 000,000,401 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATMMSaveLoadError.CATNls
[2009.09.30 18:33:00 | 000,000,053 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMCATSDMSaveLoadError.CATNls
[2009.09.30 18:33:00 | 000,000,958 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMLoadError.CATNls
[2009.09.30 18:33:00 | 000,002,562 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOMSaveLoadError.CATNls
[2009.09.30 18:33:02 | 000,003,980 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATOsmSaveLoadError.CATNls
[2009.09.30 18:33:32 | 000,000,503 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATSmBOMSaveLoadError.CATNls
[2009.09.30 18:33:34 | 000,000,063 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATStandardSaveLoadError.CATNls
[2009.10.12 14:43:40 | 000,001,128 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\OMCATSaveLoadError.CATNls
[2005.11.24 15:34:26 | 000,000,176 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\servlet\SessionDownloader.XMLServlet
[2005.06.09 17:05:40 | 000,000,126 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\widget\FileUploader.XMLWidget
[2011.03.02 13:39:56 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2014.03.22 12:14:53 | 000,000,723 | ---- | M] () -- \Users\Carleeno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1I4FN3IH\downloaderror[1].js
[2014.03.22 12:14:53 | 000,001,174 | ---- | M] () -- \Users\Carleeno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1I4FN3IH\downloader[1].js
[2014.03.05 18:41:02 | 000,004,178 | ---- | M] () -- \Users\Carleeno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4IKST0FL\ajax-loader-3739113184[1].gif
[2014.03.07 20:28:13 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:28:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:41:11 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 07:26:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_66fe4899953f502c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 16:12:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_677d175eae65090e\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 04:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 07:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 08:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 04:18:31 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 13:03:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_69637bfcab8b6996\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.05 20:59:53 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2014.03.05 20:59:53 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2014.03.05 20:59:53 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2014.03.05 20:59:53 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2014.03.05 20:59:54 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 07:37:37 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.14 07:37:37 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009.07.14 07:37:37 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009.07.14 07:37:37 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009.07.14 07:37:37 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2014.03.05 22:58:59 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2014.03.05 22:58:59 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2014.03.05 22:58:59 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2014.03.05 22:58:59 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2014.03.05 22:58:59 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.13 20:18:36 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:44:20 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 07:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:56:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 03:54:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 12:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >
[2009.09.26 02:26:44 | 000,098,816 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\code\bin\CATNodelockDlg.dll
[2009.09.26 03:23:12 | 000,041,984 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\code\bin\CATNodelockMgt.exe
[2009.09.26 03:23:12 | 000,013,824 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\code\bin\CATNodelockMgtB.exe
[2009.09.26 02:26:42 | 000,028,672 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\code\bin\CATNodelockUtil.dll
[2001.05.15 17:42:28 | 000,000,382 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\graphic\icons\normal\I_TlbModuleConstantNode.bmp
[2007.02.15 15:24:54 | 000,006,818 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATCustNodeSettings.CATNls
[2006.03.24 15:13:14 | 000,009,904 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodelockDlg.CATNls
[1999.05.07 00:14:20 | 000,000,035 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodelockEditorDlg.CATNls
[2004.04.08 15:42:28 | 000,001,009 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodelockMgtB.CATNls
[2004.06.23 11:02:52 | 000,009,110 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodeSettings.CATNls
[1999.11.08 18:23:34 | 000,000,094 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodeSettingsEditor.CATNls
[2000.10.20 16:56:04 | 000,000,268 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\CATNodeSettingsEditor.CATRsc
[2009.09.01 12:12:02 | 000,007,292 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATCustNodeSettings.CATNls
[2009.09.01 12:18:00 | 000,010,738 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATNodelockDlg.CATNls
[2009.09.01 12:18:00 | 000,000,038 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATNodelockEditorDlg.CATNls
[2009.09.01 12:18:00 | 000,001,113 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATNodelockMgtB.CATNls
[2009.09.01 12:18:00 | 000,009,789 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATNodeSettings.CATNls
[2009.09.01 12:18:00 | 000,000,106 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\French\CATNodeSettingsEditor.CATNls
[2009.08.31 17:05:20 | 000,007,017 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATCustNodeSettings.CATNls
[2009.08.31 17:08:16 | 000,010,654 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATNodelockDlg.CATNls
[2009.08.31 17:08:16 | 000,000,045 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATNodelockEditorDlg.CATNls
[2009.08.31 17:08:16 | 000,001,013 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATNodelockMgtB.CATNls
[2009.08.31 17:08:16 | 000,009,301 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATNodeSettings.CATNls
[2009.08.31 17:08:16 | 000,000,094 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\German\CATNodeSettingsEditor.CATNls
[2009.09.04 12:57:32 | 000,007,435 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATCustNodeSettings.CATNls
[2009.09.04 12:59:28 | 000,010,895 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATNodelockDlg.CATNls
[2009.09.04 12:59:28 | 000,000,048 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATNodelockEditorDlg.CATNls
[2009.09.04 12:59:28 | 000,001,194 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATNodelockMgtB.CATNls
[2009.09.04 12:59:28 | 000,010,098 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATNodeSettings.CATNls
[2009.09.04 12:59:28 | 000,000,105 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Italian\CATNodeSettingsEditor.CATNls
[2009.08.28 17:39:44 | 000,006,175 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATCustNodeSettings.CATNls
[2009.08.28 17:41:28 | 000,009,428 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockDlg.CATNls
[2009.08.28 17:41:28 | 000,000,032 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockEditorDlg.CATNls
[2009.08.28 17:41:28 | 000,000,967 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockMgtB.CATNls
[2009.08.28 17:41:28 | 000,008,726 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATNodeSettings.CATNls
[2009.08.28 17:41:28 | 000,000,092 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Japanese\CATNodeSettingsEditor.CATNls
[2009.08.28 15:12:28 | 000,006,473 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATCustNodeSettings.CATNls
[2009.08.28 15:15:58 | 000,009,804 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATNodelockDlg.CATNls
[2009.08.28 15:15:58 | 000,000,034 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATNodelockEditorDlg.CATNls
[2009.08.28 15:15:58 | 000,000,997 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATNodelockMgtB.CATNls
[2009.08.28 15:15:58 | 000,009,112 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATNodeSettings.CATNls
[2009.08.28 15:15:58 | 000,000,095 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Korean\CATNodeSettingsEditor.CATNls
[2009.08.31 17:55:28 | 000,007,013 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATCustNodeSettings.CATNls
[2009.08.31 17:58:00 | 000,010,490 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATNodelockDlg.CATNls
[2009.08.31 17:58:00 | 000,000,048 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATNodelockEditorDlg.CATNls
[2009.08.31 17:58:00 | 000,001,168 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATNodelockMgtB.CATNls
[2009.08.31 17:58:00 | 000,009,342 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATNodeSettings.CATNls
[2009.08.31 17:58:00 | 000,000,090 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Russian\CATNodeSettingsEditor.CATNls
[2009.09.30 18:30:44 | 000,005,684 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATCustNodeSettings.CATNls
[2009.09.30 18:33:00 | 000,008,325 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockDlg.CATNls
[2009.09.30 18:33:00 | 000,000,028 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockEditorDlg.CATNls
[2009.09.30 18:33:00 | 000,000,918 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockMgtB.CATNls
[2009.09.30 18:33:00 | 000,008,087 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodeSettings.CATNls
[2009.09.30 18:33:00 | 000,000,085 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4171690403-2305926640-322355435-1000\$ROEM89C\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodeSettingsEditor.CATNls
[2009.09.26 02:26:44 | 000,098,816 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\code\bin\CATNodelockDlg.dll
[2009.09.26 03:23:12 | 000,041,984 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\code\bin\CATNodelockMgt.exe
[2009.09.26 03:23:12 | 000,013,824 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\code\bin\CATNodelockMgtB.exe
[2009.09.26 02:26:42 | 000,028,672 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\code\bin\CATNodelockUtil.dll
[2005.09.27 21:56:10 | 000,000,382 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\CATVoaSeatNode.bmp
[2003.11.05 21:54:34 | 000,000,350 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\I_TreeConstraintNode.bmp
[2004.03.20 00:20:56 | 000,001,550 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\I_TreeReportNode.bmp
[2005.02.08 23:06:12 | 000,000,822 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\I_TreeSegmentOffsetNode.bmp
[2005.11.29 18:57:42 | 000,000,348 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_ArrInsertNodeCenterLocation.bmp
[2000.10.18 02:43:30 | 000,001,606 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_ArrInsertNodes.bmp
[2005.11.29 18:58:34 | 000,000,348 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_ArrInsertNodesBetweenRange.bmp
[2000.08.22 14:26:24 | 000,001,606 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_AssyFeatNode.bmp
[2002.06.19 16:47:24 | 000,001,606 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_QsrAdjustNode.bmp
[2001.05.15 17:42:28 | 000,000,382 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\normal\I_TlbModuleConstantNode.bmp
[2005.11.29 18:58:08 | 000,000,212 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\small\I_ArrInsertNodeCenterLocation.bmp
[2000.10.18 02:42:54 | 000,001,334 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\small\I_ArrInsertNodes.bmp
[2005.11.29 18:58:46 | 000,000,212 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\small\I_ArrInsertNodesBetweenRange.bmp
[2002.06.19 16:38:08 | 000,001,334 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\graphic\icons\small\I_QsrAdjustNode.bmp
[2005.12.13 03:54:36 | 000,001,745 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATArrInsertNodeCmd.CATNls
[2005.12.07 02:15:50 | 000,000,676 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATArrInsertNodePanel.CATNls
[2005.12.07 02:11:32 | 000,000,220 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATArrInsertNodePanel.CATRsc
[2007.02.15 15:24:54 | 000,006,818 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATCustNodeSettings.CATNls
[2005.01.20 16:29:20 | 000,000,856 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATDYNSelectNodeFrame.CATNls
[2006.03.24 15:13:14 | 000,009,904 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodelockDlg.CATNls
[1999.05.07 00:14:20 | 000,000,035 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodelockEditorDlg.CATNls
[2004.04.08 15:42:28 | 000,001,009 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodelockMgtB.CATNls
[2004.06.23 11:02:52 | 000,009,110 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodeSettings.CATNls
[1999.11.08 18:23:34 | 000,000,094 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodeSettingsEditor.CATNls
[2000.10.20 16:56:04 | 000,000,268 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATNodeSettingsEditor.CATRsc
[2006.09.12 14:52:20 | 000,001,913 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATQsrAdjustNodeCmd.CATNls
[2006.11.06 12:21:22 | 000,001,639 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\CATQsrAdjustNodeDlg.CATNls
[2009.04.15 16:03:42 | 000,000,208 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\DNBPertNodeVisuAdapter.CATNls
[2009.09.01 12:10:30 | 000,002,093 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATArrInsertNodeCmd.CATNls
[2009.09.01 12:10:30 | 000,000,779 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATArrInsertNodePanel.CATNls
[2009.09.01 12:12:02 | 000,007,292 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATCustNodeSettings.CATNls
[2009.09.01 12:13:02 | 000,000,901 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATDYNSelectNodeFrame.CATNls
[2009.09.01 12:18:00 | 000,010,738 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATNodelockDlg.CATNls
[2009.09.01 12:18:00 | 000,000,038 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATNodelockEditorDlg.CATNls
[2009.09.01 12:18:00 | 000,001,113 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATNodelockMgtB.CATNls
[2009.09.01 12:18:00 | 000,009,789 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATNodeSettings.CATNls
[2009.09.01 12:18:00 | 000,000,106 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATNodeSettingsEditor.CATNls
[2009.09.01 12:19:16 | 000,002,088 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATQsrAdjustNodeCmd.CATNls
[2009.09.01 12:19:16 | 000,001,690 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\CATQsrAdjustNodeDlg.CATNls
[2009.09.01 12:24:10 | 000,000,216 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\French\DNBPertNodeVisuAdapter.CATNls
[2009.08.31 17:04:40 | 000,002,244 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATArrInsertNodeCmd.CATNls
[2009.08.31 17:04:40 | 000,000,804 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATArrInsertNodePanel.CATNls
[2009.08.31 17:05:20 | 000,007,017 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATCustNodeSettings.CATNls
[2009.08.31 17:05:52 | 000,000,908 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATDYNSelectNodeFrame.CATNls
[2009.08.31 17:08:16 | 000,010,654 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATNodelockDlg.CATNls
[2009.08.31 17:08:16 | 000,000,045 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATNodelockEditorDlg.CATNls
[2009.08.31 17:08:16 | 000,001,013 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATNodelockMgtB.CATNls
[2009.08.31 17:08:16 | 000,009,301 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATNodeSettings.CATNls
[2009.08.31 17:08:16 | 000,000,094 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\CATNodeSettingsEditor.CATNls
[2009.08.31 17:11:58 | 000,000,217 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\German\DNBPertNodeVisuAdapter.CATNls
[2009.09.04 12:57:10 | 000,002,015 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATArrInsertNodeCmd.CATNls
[2009.09.04 12:57:10 | 000,000,771 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATArrInsertNodePanel.CATNls
[2009.09.04 12:57:32 | 000,007,435 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATCustNodeSettings.CATNls
[2009.09.04 12:57:52 | 000,000,886 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATDYNSelectNodeFrame.CATNls
[2009.09.04 12:59:28 | 000,010,895 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATNodelockDlg.CATNls
[2009.09.04 12:59:28 | 000,000,048 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATNodelockEditorDlg.CATNls
[2009.09.04 12:59:28 | 000,001,194 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATNodelockMgtB.CATNls
[2009.09.04 12:59:28 | 000,010,098 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATNodeSettings.CATNls
[2009.09.04 12:59:28 | 000,000,105 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\CATNodeSettingsEditor.CATNls
[2009.09.04 13:02:04 | 000,000,216 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Italian\DNBPertNodeVisuAdapter.CATNls
[2009.08.28 17:39:30 | 000,001,721 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATArrInsertNodeCmd.CATNls
[2009.08.28 17:39:30 | 000,000,644 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATArrInsertNodePanel.CATNls
[2009.08.28 17:39:44 | 000,006,175 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATCustNodeSettings.CATNls
[2009.08.28 17:34:34 | 000,000,843 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATDYNSelectNodeFrame.CATNls
[2009.08.28 17:41:28 | 000,009,428 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockDlg.CATNls
[2009.08.28 17:41:28 | 000,000,032 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockEditorDlg.CATNls
[2009.08.28 17:41:28 | 000,000,967 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATNodelockMgtB.CATNls
[2009.08.28 17:41:28 | 000,008,726 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATNodeSettings.CATNls
[2009.08.28 17:41:28 | 000,000,092 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATNodeSettingsEditor.CATNls
[2009.08.28 17:43:14 | 000,001,837 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATQsrAdjustNodeCmd.CATNls
[2009.08.28 17:43:14 | 000,001,563 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\CATQsrAdjustNodeDlg.CATNls
[2009.08.28 17:37:06 | 000,000,193 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Japanese\DNBPertNodeVisuAdapter.CATNls
[2009.08.28 15:11:10 | 000,001,702 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATArrInsertNodeCmd.CATNls
[2009.08.28 15:11:10 | 000,000,632 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATArrInsertNodePanel.CATNls
[2009.08.28 15:12:28 | 000,006,473 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATCustNodeSettings.CATNls
[2009.08.28 15:15:58 | 000,009,804 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATNodelockDlg.CATNls
[2009.08.28 15:15:58 | 000,000,034 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATNodelockEditorDlg.CATNls
[2009.08.28 15:15:58 | 000,000,997 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATNodelockMgtB.CATNls
[2009.08.28 15:15:58 | 000,009,112 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATNodeSettings.CATNls
[2009.08.28 15:15:58 | 000,000,095 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Korean\CATNodeSettingsEditor.CATNls
[2009.08.31 17:55:28 | 000,007,013 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATCustNodeSettings.CATNls
[2009.08.31 17:58:00 | 000,010,490 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATNodelockDlg.CATNls
[2009.08.31 17:58:00 | 000,000,048 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATNodelockEditorDlg.CATNls
[2009.08.31 17:58:00 | 000,001,168 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATNodelockMgtB.CATNls
[2009.08.31 17:58:00 | 000,009,342 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATNodeSettings.CATNls
[2009.08.31 17:58:00 | 000,000,090 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Russian\CATNodeSettingsEditor.CATNls
[2009.09.30 18:30:24 | 000,001,392 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATArrInsertNodeCmd.CATNls
[2009.09.30 18:30:24 | 000,000,586 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATArrInsertNodePanel.CATNls
[2009.09.30 18:30:44 | 000,005,684 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATCustNodeSettings.CATNls
[2009.09.30 18:33:00 | 000,008,325 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockDlg.CATNls
[2009.09.30 18:33:00 | 000,000,028 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockEditorDlg.CATNls
[2009.09.30 18:33:00 | 000,000,918 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodelockMgtB.CATNls
[2009.09.30 18:33:00 | 000,008,087 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodeSettings.CATNls
[2009.09.30 18:33:00 | 000,000,085 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\resources\msgcatalog\Simplified_Chinese\CATNodeSettingsEditor.CATNls
[2005.01.28 19:52:04 | 000,000,232 | ---- | M] () -- \Program Files\Dassault Systemes\B20\win_b64\startup\EquipmentAndSystems\MultiDiscipline\SampleData\RunInputNodeData.txt

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2014.02.13 23:57:42 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.03.15 12:53:43 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014.02.14 00:30:04 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.03.15 12:54:31 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012.10.05 12:52:37 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2009.06.10 15:10:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 04:02:06 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.03.06 19:41:19 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\553e7bfc9cac5e4feaa83d8ee1e187bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.03.06 19:42:32 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\f177ea74036d5fdc6c6b9c967dc877cf\System.Runtime.Serialization.ni.dll
[2014.03.06 19:45:11 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8653acb87b4a219a84e4ce58df35e62a\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.03.06 19:47:24 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\b73fbf8a2db2192752ad2b13744a393b\System.Runtime.Serialization.ni.dll
[2014.03.06 19:59:43 | 000,309,760 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.03.06 19:59:43 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.03.06 19:59:53 | 002,825,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
[2014.03.06 19:59:53 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll.aux
[2014.03.06 20:48:04 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll
[2014.03.06 20:48:04 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll.aux
[2014.03.06 20:08:01 | 000,376,832 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\3b1e2119f9cdfbc454bf08eb1ed9f023\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.03.06 20:08:01 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\3b1e2119f9cdfbc454bf08eb1ed9f023\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.03.06 20:09:26 | 003,640,320 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\7e7ed14f2b9a7e3d94307462aa99f5b9\System.Runtime.Serialization.ni.dll
[2014.03.06 20:09:26 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\7e7ed14f2b9a7e3d94307462aa99f5b9\System.Runtime.Serialization.ni.dll.aux
[2014.03.06 20:11:42 | 000,028,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\7c4a5c747f2dcdac0329022b43a7be6b\System.Xml.Serialization.ni.dll
[2014.03.06 20:11:42 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\7c4a5c747f2dcdac0329022b43a7be6b\System.Xml.Serialization.ni.dll.aux
[2013.09.11 23:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 23:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013.09.11 22:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 23:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013.09.11 23:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.09.11 22:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013.09.11 22:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.09.11 22:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.09.11 22:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013.09.11 22:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 23:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 23:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2012.10.05 12:52:38 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013.09.11 23:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.09.11 22:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.09.11 22:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013.09.11 22:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 21:32:16 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 21:32:16 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.13 19:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.13 19:38:14 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\en-US\serialui.dll.mui
[2009.06.10 15:10:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 03:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.13 19:58:44 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 04:26:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.06.08 11:39:36 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2009.07.13 20:07:20 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 04:30:28 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2012.10.06 12:53:01 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.17136_none_593e9c4e749147df\System.Runtime.Serialization.dll
[2012.10.06 12:56:09 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.21337_none_4270dea28e38c1d7\System.Runtime.Serialization.dll
[2010.11.05 03:52:16 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2012.10.05 12:52:38 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b\System.Runtime.Serialization.dll
[2012.10.06 12:56:09 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53\System.Runtime.Serialization.dll
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2012.10.06 12:53:00 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_9415a918c8894278\System.Runtime.Serialization.dll
[2012.10.06 12:56:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_7d47eb6ce230bc70\System.Runtime.Serialization.dll
[2010.11.05 03:52:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.10.05 12:52:37 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4\System.Runtime.Serialization.dll
[2012.10.06 12:56:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec\System.Runtime.Serialization.dll
[2014.03.05 22:58:38 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2014.03.05 22:58:38 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2014.03.05 20:59:53 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 07:37:34 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2014.03.05 20:59:55 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 07:37:35 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2012.10.06 20:44:48 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.17136_none_593e9c4e749147df.manifest
[2012.10.06 21:00:33 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.21337_none_4270dea28e38c1d7.manifest
[2010.11.20 07:21:24 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2012.10.05 20:18:30 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2012.10.05 20:10:31 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2009.07.14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2012.10.06 20:46:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_9415a918c8894278.manifest
[2012.10.06 21:01:29 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_7d47eb6ce230bc70.manifest
[2010.11.20 07:22:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2012.10.05 20:19:07 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2012.10.05 20:11:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2012.10.06 20:07:20 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009.manifest
[2012.10.06 20:58:54 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01.manifest
[2010.11.20 06:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2009.07.13 20:17:48 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 04:42:40 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2012.10.06 20:17:26 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_en-us_8f6cbf57bf7f3b35.manifest
[2012.10.06 20:18:44 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_en-us_789f01abd926b52d.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 20:09:41 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 21:59:28 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 19:57:17 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2012.10.06 20:11:48 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c.manifest
[2012.10.06 21:03:01 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34.manifest
[2010.11.20 06:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2012.10.06 20:09:38 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e.manifest
[2012.10.06 21:00:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576.manifest
[2010.11.20 06:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 15:10:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2012.10.06 12:54:26 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009\System.Runtime.Serialization.dll
[2012.10.06 12:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01\System.Runtime.Serialization.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.06 12:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2009.06.08 11:39:36 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:02:06 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2012.10.06 12:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c\System.Runtime.Serialization.dll
[2012.10.06 12:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.06 12:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009.06.10 15:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.13 19:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.06.08 11:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2012.10.06 12:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e\System.Runtime.Serialization.dll
[2012.10.06 12:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.06 12:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll

< *w7lxe* /s >

< End of report >

[Márty84]

Jen se jeste zeptam, jak je to s legalitou Esetu a samotneho systemu? Ultimate neni zrovna bezna domaci verze


Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[Wooolfie]

K těm Windows, mám zakoupenou licenci na verzi Ultimate, když jsem kupoval řadu notebooku co mám od Vaio, byla cena za upgrade Ultimate zanedbatelná. Po poslední přeinstalaci OS ale licenční klíč odmítá pracovat tak jak má a chová se jako nelegální. Reklamaci řeším přes zákaznickou podporu Microsoftu (která má hromady času namísto toho aby mi zaslali nový klíč ), mě ale bohužel tlačí pracovní termíny, které musím plnit a kvůli datům a SW který používám jsem zvolil tuto cestu "aktivace". Necítím se nijak provinile nebo že bych porušil nějaká autorská práva, za licenční klíč pro daný notebook jsem zaplatil. K tomu Esetu, používal jsem celou dobu AVG free antivirus a nikdy žádný problém nebyl až do nedávna. Zkušebně jsem si nainstaloval nějakou verzi co jsem našel na internetu abych provedl alespoň základní scan. Očividně free verze od AVG nebyla dostatečná. Momentálně se rozhoduji pro zakoupení plného softwaru od Esetu a Kaspersky, můžete mi dát nějakou radu do kterého výrobce tohoto SW se vyplatí více investovat?

Log z MBAM:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 23.4.2014
Scan Time: 19:16:09
Logfile: log.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.23.01
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Carleeno

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 611219
Time Elapsed: 12 hr, 53 min, 43 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

[Márty84]

No, na jednu stranu by to mohl rict kazdy, ze Ale dejme tomu. Ovsem pokud to priste nebude koser, bude pomoc odmitnuta a navic prijde dalsi postih, minimalne warn, OK?


MBAM odinstalujte.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.



Z tech dvou baliku bych koupil Kasperskeho. Jinak ale mi docela staci Avast free.

[Wooolfie]

Beru na vědomí, v pondělí objednávám Kasperskyho

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x64)
Date : 2014/04/27 15:28:16

-- Controller Map ----------------------------------------------------------
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- ATA Channel 5 (5)
- Ricoh PCIe Memory Stick Host Controller [ATA]
+ ATA Channel 0 (0) [ATA]
- WDC WD7500BPKT-00PK4T0 ATA Device
+ ATA Channel 1 (1) [ATA]
- MATSHITA DVD-RAM UJ890AS ATA Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD7500BPKT-00PK4T0 : 750,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD7500BPKT-00PK4T0
----------------------------------------------------------------------------
Model : WDC WD7500BPKT-00PK4T0
Firmware : 01.01A01
Serial Number : WD-WX41A33T2232
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 1925 hod.
Power On Count : 876 krát
Temparature : 40 C (104 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 196 194 _21 0000000004B0 Čas na roztočení ploten
04 100 100 __0 00000000036C Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _98 _98 __0 000000000785 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 00000000036C Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000003E Počet vypnutí disku
C1 198 198 __0 000000001F89 Počet cyklů načítání/vymazání
C2 107 _96 __0 000000000028 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4133 4133 3354 3232 3332
020: 0000 8000 0032 3031 2E30 3031 3031 5744 4320 5744
030: 3735 3030 4250 4B54 2D30 4B34 4B34 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1F06 1F06 0000 004C 0040
080: 01FE 0000 746B 7D09 6123 BC09 BC09 6123 207F 0043
090: 0043 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 0000 5001 4EE6
110: 58B4 B6D4 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 013E 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 7035 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A8A5

# AdwCleaner v3.204 - Report created 27/04/2014 at 15:25:09
# Updated 26/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Carleeno - CARLEENO-NB
# Running from : C:\Users\Carleeno\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\Carleeno\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.qip.ru/search/?query={searchTerms}&from=os
Deleted [Search Provider] : hxxp://www.speedhunters.com/search-results/?q={searchTerms}

[ File : C:\Users\Free\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1120 octets] - [27/04/2014 15:23:01]
AdwCleaner[S0].txt - [1046 octets] - [27/04/2014 15:25:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1106 octets] ##########

[Márty84]

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)



Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

[Wooolfie]

CrystalDiskInfo:
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate Edition SP1 [6.1 Build 7601] (x64)
Date : 2014/04/28 18:04:47

-- Controller Map ----------------------------------------------------------
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- ATA Channel 5 (5)
- Ricoh PCIe Memory Stick Host Controller [ATA]
+ ATA Channel 0 (0) [ATA]
- WDC WD7500BPKT-00PK4T0 ATA Device
+ ATA Channel 1 (1) [ATA]
- MATSHITA DVD-RAM UJ890AS ATA Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD7500BPKT-00PK4T0 : 750,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD7500BPKT-00PK4T0
----------------------------------------------------------------------------
Model : WDC WD7500BPKT-00PK4T0
Firmware : 01.01A01
Serial Number : WD-WX41A33T2232
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 1927 hod.
Power On Count : 877 krát
Temparature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 196 194 _21 0000000004B0 Čas na roztočení ploten
04 100 100 __0 00000000036D Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _98 _98 __0 000000000787 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 00000000036D Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000003E Počet vypnutí disku
C1 198 198 __0 000000001F99 Počet cyklů načítání/vymazání
C2 115 _96 __0 000000000020 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4133 4133 3354 3232 3332
020: 0000 8000 0032 3031 2E30 3031 3031 5744 4320 5744
030: 3735 3030 4250 4B54 2D30 4B34 4B34 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0107 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1F06 1F06 0000 004C 0040
080: 01FE 0000 746B 7D09 6123 BC09 BC09 6123 007F 0043
090: 0043 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 0000 5001 4EE6
110: 58B4 B6D4 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 013E 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 7035 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D7A5


RogueKiller:
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Carleeno [Práva správce]
Mód : Kontrola -- Datum : 04/28/2014 18:01:16
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD7500BPKT-00PK4T0 ATA Device +++++
--- User ---
[MBR] 362a7f1e7737a68d3f74c3ec249c41a1
[BSP] 9d00bf0147aced8460c5306ffbe71726 : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 387200 MB
2 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 793194494 | Size: 328102 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04282014_180116.txt >>

[Márty84]

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

[Wooolfie]

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Carleeno [Práva správce]
Mód : Odebrat -- Datum : 04/28/2014 19:40:27
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 6 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD7500BPKT-00PK4T0 ATA Device +++++
--- User ---
[MBR] 362a7f1e7737a68d3f74c3ec249c41a1
[BSP] 9d00bf0147aced8460c5306ffbe71726 : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 387200 MB
2 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 793194494 | Size: 328102 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_04282014_194027.txt >>
RKreport[0]_S_04282014_180116.txt

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Carleeno [Práva správce]
Mód : Oprava HOSTS -- Datum : 04/28/2014 19:41:13
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončeno : << RKreport[0]_H_04282014_194113.txt >>
RKreport[0]_D_04282014_194027.txt;RKreport[0]_S_04282014_180116.txt